Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2023-33128
Vulnerability from cvelistv5
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory |
Vendor | Product | Version | ||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Microsoft | .NET 6.0 |
Version: 6.0.0 < 6.0.18 |
|||||||||||||||||||||||||||||||
|
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2023-33128", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-08T14:18:33.333686Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-08T14:18:51.143Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T15:39:35.239Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: ".NET and Visual Studio Remote Code Execution Vulnerability", tags: [ "vendor-advisory", "x_transferred", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { platforms: [ "Unknown", ], product: ".NET 6.0", vendor: "Microsoft", versions: [ { lessThan: "6.0.18", status: "affected", version: "6.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: ".NET 7.0", vendor: "Microsoft", versions: [ { lessThan: "7.0.7", status: "affected", version: "7.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.0", vendor: "Microsoft", versions: [ { lessThan: "17.0.22", status: "affected", version: "17.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.2", vendor: "Microsoft", versions: [ { lessThan: "17.2.16", status: "affected", version: "17.2.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.4", vendor: "Microsoft", versions: [ { lessThan: "17.4.8", status: "affected", version: "17.4.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.6", vendor: "Microsoft", versions: [ { lessThan: "17.6.3", status: "affected", version: "17.6.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "PowerShell 7.3", vendor: "Microsoft", versions: [ { lessThan: "7.3.5", status: "affected", version: "7.3.0", versionType: "custom", }, ], }, ], cpeApplicability: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "6.0.18", versionStartIncluding: "6.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "7.0.7", versionStartIncluding: "7.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.0.22", versionStartIncluding: "17.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.2.16", versionStartIncluding: "17.2.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.4.8", versionStartIncluding: "17.4.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", versionEndExcluding: "17.6.3", versionStartIncluding: "17.6.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:powershell:*:-:*:*:*:*:*:*", versionEndExcluding: "7.3.5", versionStartIncluding: "7.3.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], datePublic: "2023-06-13T07:00:00+00:00", descriptions: [ { lang: "en-US", value: ".NET and Visual Studio Remote Code Execution Vulnerability", }, ], metrics: [ { cvssV3_1: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en-US", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416: Use After Free", lang: "en-US", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-01-01T01:44:12.674Z", orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8", shortName: "microsoft", }, references: [ { name: ".NET and Visual Studio Remote Code Execution Vulnerability", tags: [ "vendor-advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], title: ".NET and Visual Studio Remote Code Execution Vulnerability", }, }, cveMetadata: { assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8", assignerShortName: "microsoft", cveId: "CVE-2023-33128", datePublished: "2023-06-13T23:26:22.949Z", dateReserved: "2023-05-17T21:16:44.895Z", dateUpdated: "2025-01-01T01:44:12.674Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0.0\", \"versionEndExcluding\": \"6.0.18\", \"matchCriteriaId\": \"A00E1F46-D02A-42C8-9292-F38BE98DE1CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.0.0\", \"versionEndExcluding\": \"7.0.7\", \"matchCriteriaId\": \"5FABF6D4-EA23-4234-90D3-0D9306A2994B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.0\", \"versionEndExcluding\": \"17.0.22\", \"matchCriteriaId\": \"2B1F98BC-0D82-4AEB-9E1E-D67325E99385\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.2\", \"versionEndExcluding\": \"17.2.16\", \"matchCriteriaId\": \"B6B0B496-BC41-4F9D-9A28-AE7664B5C77D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.4\", \"versionEndExcluding\": \"17.4.8\", \"matchCriteriaId\": \"BC861E65-1682-4E99-8A7B-F4A31DDC0198\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.6\", \"versionEndExcluding\": \"17.6.3\", \"matchCriteriaId\": \"51DB90D6-C1C4-43B9-8B37-696CB361F37F\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \".NET and Visual Studio Remote Code Execution Vulnerability\"}]", id: "CVE-2023-33128", lastModified: "2024-11-21T08:04:56.780", metrics: "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 7.3, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.3, \"impactScore\": 5.9}]}", published: "2023-06-14T00:15:11.910", references: "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]", sourceIdentifier: "secure@microsoft.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2023-33128\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T00:15:11.910\",\"lastModified\":\"2024-11-21T08:04:56.780\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET and Visual Studio Remote Code Execution Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.3,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.18\",\"matchCriteriaId\":\"A00E1F46-D02A-42C8-9292-F38BE98DE1CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.7\",\"matchCriteriaId\":\"5FABF6D4-EA23-4234-90D3-0D9306A2994B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.0\",\"versionEndExcluding\":\"17.0.22\",\"matchCriteriaId\":\"2B1F98BC-0D82-4AEB-9E1E-D67325E99385\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.2\",\"versionEndExcluding\":\"17.2.16\",\"matchCriteriaId\":\"B6B0B496-BC41-4F9D-9A28-AE7664B5C77D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.4\",\"versionEndExcluding\":\"17.4.8\",\"matchCriteriaId\":\"BC861E65-1682-4E99-8A7B-F4A31DDC0198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.6\",\"versionEndExcluding\":\"17.6.3\",\"matchCriteriaId\":\"51DB90D6-C1C4-43B9-8B37-696CB361F37F\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}", vulnrichment: { containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\", \"name\": \".NET and Visual Studio Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T15:39:35.239Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-33128\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-08T14:18:33.333686Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-08T14:18:46.419Z\"}}], \"cna\": {\"title\": \".NET and Visual Studio Remote Code Execution Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.3, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \".NET 6.0\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.0.0\", \"lessThan\": \"6.0.18\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \".NET 7.0\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.0.0\", \"lessThan\": \"7.0.7\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.0\", \"versions\": [{\"status\": \"affected\", \"version\": \"17.0.0\", \"lessThan\": \"17.0.22\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"17.2.0\", \"lessThan\": \"17.2.16\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.4\", \"versions\": [{\"status\": \"affected\", \"version\": \"17.4.0\", \"lessThan\": \"17.4.8\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.6\", \"versions\": [{\"status\": \"affected\", \"version\": \"17.6.0\", \"lessThan\": \"17.6.3\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"PowerShell 7.3\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.3.0\", \"lessThan\": \"7.3.5\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}], \"datePublic\": \"2023-06-13T07:00:00+00:00\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\", \"name\": \".NET and Visual Studio Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \".NET and Visual Studio Remote Code Execution Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416: Use After Free\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.0.18\", \"versionStartIncluding\": \"6.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"7.0.7\", \"versionStartIncluding\": \"7.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"17.0.22\", \"versionStartIncluding\": \"17.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"17.2.16\", \"versionStartIncluding\": \"17.2.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"17.4.8\", \"versionStartIncluding\": \"17.4.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"17.6.3\", \"versionStartIncluding\": \"17.6.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:powershell:*:-:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"7.3.5\", \"versionStartIncluding\": \"7.3.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-01-01T01:44:12.674Z\"}}}", cveMetadata: "{\"cveId\": \"CVE-2023-33128\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-01T01:44:12.674Z\", \"dateReserved\": \"2023-05-17T21:16:44.895Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2023-06-13T23:26:22.949Z\", \"assignerShortName\": \"microsoft\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
rhsa-2023_4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
rhsa-2023:3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
rhsa-2023_4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
ICSA-24-165-04
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens ST7 ScadaConnect", tracking: { current_release_date: "2024-06-11T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-24-165-04", initial_release_date: "2024-06-11T00:00:00.000000Z", revision_history: [ { date: "2024-06-11T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "CSAFPID-0001", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-44487", }, ], }
icsa-23-320-12
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-150063.html", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens PNI", tracking: { current_release_date: "2023-11-14T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-23-320-12", initial_release_date: "2023-11-14T00:00:00.000000Z", revision_history: [ { date: "2023-11-14T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V2.0", product: { name: "SINEC PNI", product_id: "CSAFPID-0001", }, }, ], category: "product_name", name: "SINEC PNI", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-30184", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Information Disclosure Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-30184", }, { cve: "CVE-2022-37434", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "summary", text: "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-37434", }, { cve: "CVE-2022-41032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "NuGet Client Elevation of Privilege Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-41032", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, ], }
ICSA-23-320-12
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-150063.html", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens PNI", tracking: { current_release_date: "2023-11-14T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-23-320-12", initial_release_date: "2023-11-14T00:00:00.000000Z", revision_history: [ { date: "2023-11-14T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V2.0", product: { name: "SINEC PNI", product_id: "CSAFPID-0001", }, }, ], category: "product_name", name: "SINEC PNI", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-30184", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Information Disclosure Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-30184", }, { cve: "CVE-2022-37434", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "summary", text: "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-37434", }, { cve: "CVE-2022-41032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "NuGet Client Elevation of Privilege Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-41032", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, ], }
icsa-24-165-04
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens ST7 ScadaConnect", tracking: { current_release_date: "2024-06-11T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-24-165-04", initial_release_date: "2024-06-11T00:00:00.000000Z", revision_history: [ { date: "2024-06-11T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "CSAFPID-0001", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-44487", }, ], }
ncsc-2024-0246
Vulnerability from csaf_ncscnl
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Siemens heeft kwetsbaarheden verholpen in diverse producten, zoals SCALANCE, SICAM, Tecnomatix, SITOP en PowerSys.", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van beveiligingsmaatregel\n- (Remote) code execution (Administrator/Root rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Verhoogde gebruikersrechten\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.\n", title: "Interpretaties", }, { category: "description", text: "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "general", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "general", text: "Heap-based Buffer Overflow", title: "CWE-122", }, { category: "general", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "general", text: "Write-what-where Condition", title: "CWE-123", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, { category: "general", text: "Improper Null Termination", title: "CWE-170", }, { category: "general", text: "Integer Overflow or Wraparound", title: "CWE-190", }, { category: "general", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Privilege Management", title: "CWE-269", }, { category: "general", text: "Improper Authentication", title: "CWE-287", }, { category: "general", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "general", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "general", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, { category: "general", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, { category: "general", text: "Missing Cryptographic Step", title: "CWE-325", }, { category: "general", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "general", text: "Use of Weak Hash", title: "CWE-328", }, { category: "general", text: "Use of Insufficiently Random Values", title: "CWE-330", }, { category: "general", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, { category: "general", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, { category: "general", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "general", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "general", text: "Double Free", title: "CWE-415", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Insufficiently Protected Credentials", title: "CWE-522", }, { category: "general", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, { category: "general", text: "Insufficient Session Expiration", title: "CWE-613", }, { category: "general", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, { category: "general", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, { category: "general", text: "Improper Locking", title: "CWE-667", }, { category: "general", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "general", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, { category: "general", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, { category: "general", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "general", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "general", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Deadlock", title: "CWE-833", }, { category: "general", text: "Excessive Iteration", title: "CWE-834", }, { category: "general", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-024584.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-196737.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-238730.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-319319.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-337522.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-481506.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-540640.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-620338.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-625862.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-690517.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-879734.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-900277.pdf", }, ], title: "Kwetsbaarheden verholpen in Siemens producten", tracking: { current_release_date: "2024-06-11T13:29:25.912614Z", id: "NCSC-2024-0246", initial_release_date: "2024-06-11T13:29:25.912614Z", revision_history: [ { date: "2024-06-11T13:29:25.912614Z", number: "0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "mendix", product: { name: "mendix", product_id: "CSAFPID-538452", product_identification_helper: { cpe: "cpe:2.3:a:siemens:mendix:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "simatic", product: { name: "simatic", product_id: "CSAFPID-166121", product_identification_helper: { cpe: "cpe:2.3:a:siemens:simatic:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sinec-nms", product: { name: "sinec-nms", product_id: "CSAFPID-163798", product_identification_helper: { cpe: "cpe:2.3:a:siemens:sinec-nms:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tecnomatix_plant_simulation", product: { name: "tecnomatix_plant_simulation", product_id: "CSAFPID-166120", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tia_administrator", product: { name: "tia_administrator", product_id: "CSAFPID-766096", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_w700", product: { name: "scalance_w700", product_id: "CSAFPID-1009262", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xm-400", product: { name: "scalance_xm-400", product_id: "CSAFPID-1014214", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xr-500", product: { name: "scalance_xr-500", product_id: "CSAFPID-1014213", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xr-500:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_ak_3", product: { name: "sicam_ak_3", product_id: "CSAFPID-1007975", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_ak_3:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_bc", product: { name: "sicam_bc", product_id: "CSAFPID-1007979", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_bc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_tm", product: { name: "sicam_tm", product_id: "CSAFPID-1007978", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_tm:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "siplus_tim_1531_irc", product: { name: "siplus_tim_1531_irc", product_id: "CSAFPID-1326635", product_identification_helper: { cpe: "cpe:2.3:h:siemens:siplus_tim_1531_irc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sitop_ups1600", product: { name: "sitop_ups1600", product_id: "CSAFPID-1037908", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sitop_ups1600:-:*:*:*:*:*:*:*", }, }, }, ], category: "vendor", name: "siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28319", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-28319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28319.json", }, ], title: "CVE-2023-28319", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-28484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28484.json", }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-29331", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29331.json", }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2023-29469", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29469.json", }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-32032", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-32032.json", }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33126", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33126.json", }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-1220", name: "Insufficient Granularity of Access Control", }, notes: [ { category: "other", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33127", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33127.json", }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-33128", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33128.json", }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33135", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33135.json", }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33170", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33170.json", }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35390", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35390.json", }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35391", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35391.json", }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-35788", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-35788", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35788.json", }, ], title: "CVE-2023-35788", }, { cve: "CVE-2023-35823", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35823", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35823.json", }, ], title: "CVE-2023-35823", }, { cve: "CVE-2023-35824", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35824", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35824.json", }, ], title: "CVE-2023-35824", }, { cve: "CVE-2023-35828", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35828", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35828.json", }, ], title: "CVE-2023-35828", }, { cve: "CVE-2023-35829", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-35829", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35829.json", }, ], title: "CVE-2023-35829", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36038", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36038.json", }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], references: [ { category: "self", summary: "CVE-2023-36049", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36049.json", }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36435.json", }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36558", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36558.json", }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2023-36792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36792.json", }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-36793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36793.json", }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-36794", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36794.json", }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, ], references: [ { category: "self", summary: "CVE-2023-36796", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36796.json", }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36799", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36799.json", }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38171.json", }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38178.json", }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38180.json", }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-38380", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, ], references: [ { category: "self", summary: "CVE-2023-38380", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38380.json", }, ], title: "CVE-2023-38380", }, { cve: "CVE-2023-38533", cwe: { id: "CWE-379", name: "Creation of Temporary File in Directory with Insecure Permissions", }, notes: [ { category: "other", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, ], references: [ { category: "self", summary: "CVE-2023-38533", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38533.json", }, ], title: "CVE-2023-38533", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-39615", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39615.json", }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-41910", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-41910", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41910.json", }, ], title: "CVE-2023-41910", }, { cve: "CVE-2023-44317", cwe: { id: "CWE-349", name: "Acceptance of Extraneous Untrusted Data With Trusted Data", }, notes: [ { category: "other", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, ], references: [ { category: "self", summary: "CVE-2023-44317", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44317.json", }, ], title: "CVE-2023-44317", }, { cve: "CVE-2023-44318", cwe: { id: "CWE-321", name: "Use of Hard-coded Cryptographic Key", }, notes: [ { category: "other", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, ], references: [ { category: "self", summary: "CVE-2023-44318", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44318.json", }, ], title: "CVE-2023-44318", }, { cve: "CVE-2023-44319", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, notes: [ { category: "other", text: "Use of Weak Hash", title: "CWE-328", }, ], references: [ { category: "self", summary: "CVE-2023-44319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44319.json", }, ], title: "CVE-2023-44319", }, { cve: "CVE-2023-44373", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2023-44373", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44373.json", }, ], title: "CVE-2023-44373", }, { cve: "CVE-2023-44374", cwe: { id: "CWE-567", name: "Unsynchronized Access to Shared Data in a Multithreaded Context", }, notes: [ { category: "other", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, ], references: [ { category: "self", summary: "CVE-2023-44374", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44374.json", }, ], title: "CVE-2023-44374", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-44487", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json", }, ], title: "CVE-2023-44487", }, { cve: "CVE-2023-49691", cwe: { id: "CWE-78", name: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, ], references: [ { category: "self", summary: "CVE-2023-49691", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-49691.json", }, ], title: "CVE-2023-49691", }, { cve: "CVE-2023-50763", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, notes: [ { category: "other", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, ], references: [ { category: "self", summary: "CVE-2023-50763", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50763.json", }, ], title: "CVE-2023-50763", }, { cve: "CVE-2023-52474", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-52474", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52474.json", }, ], title: "CVE-2023-52474", }, { cve: "CVE-2024-0775", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-0775", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0775.json", }, ], title: "CVE-2024-0775", }, { cve: "CVE-2024-31484", cwe: { id: "CWE-170", name: "Improper Null Termination", }, notes: [ { category: "other", text: "Improper Null Termination", title: "CWE-170", }, ], references: [ { category: "self", summary: "CVE-2024-31484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31484.json", }, ], title: "CVE-2024-31484", }, { cve: "CVE-2024-33500", cwe: { id: "CWE-269", name: "Improper Privilege Management", }, notes: [ { category: "other", text: "Improper Privilege Management", title: "CWE-269", }, ], references: [ { category: "self", summary: "CVE-2024-33500", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33500.json", }, ], title: "CVE-2024-33500", }, { cve: "CVE-2024-35206", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, notes: [ { category: "other", text: "Insufficient Session Expiration", title: "CWE-613", }, ], references: [ { category: "self", summary: "CVE-2024-35206", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35206.json", }, ], title: "CVE-2024-35206", }, { cve: "CVE-2024-35207", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, notes: [ { category: "other", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, ], references: [ { category: "self", summary: "CVE-2024-35207", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35207.json", }, ], title: "CVE-2024-35207", }, { cve: "CVE-2024-35208", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, notes: [ { category: "other", text: "Insufficiently Protected Credentials", title: "CWE-522", }, ], references: [ { category: "self", summary: "CVE-2024-35208", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35208.json", }, ], title: "CVE-2024-35208", }, { cve: "CVE-2024-35209", cwe: { id: "CWE-749", name: "Exposed Dangerous Method or Function", }, notes: [ { category: "other", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, ], references: [ { category: "self", summary: "CVE-2024-35209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35209.json", }, ], title: "CVE-2024-35209", }, { cve: "CVE-2024-35210", cwe: { id: "CWE-319", name: "Cleartext Transmission of Sensitive Information", }, notes: [ { category: "other", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, ], references: [ { category: "self", summary: "CVE-2024-35210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35210.json", }, ], title: "CVE-2024-35210", }, { cve: "CVE-2024-35211", cwe: { id: "CWE-614", name: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", }, notes: [ { category: "other", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, ], references: [ { category: "self", summary: "CVE-2024-35211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35211.json", }, ], title: "CVE-2024-35211", }, { cve: "CVE-2024-35212", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-35212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35212.json", }, ], title: "CVE-2024-35212", }, { cve: "CVE-2024-35292", cwe: { id: "CWE-330", name: "Use of Insufficiently Random Values", }, notes: [ { category: "other", text: "Use of Insufficiently Random Values", title: "CWE-330", }, ], references: [ { category: "self", summary: "CVE-2024-35292", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35292.json", }, ], title: "CVE-2024-35292", }, { cve: "CVE-2024-35303", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, ], product_status: { known_affected: [ "CSAFPID-166120", ], }, references: [ { category: "self", summary: "CVE-2024-35303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35303.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-166120", ], }, ], title: "CVE-2024-35303", }, { cve: "CVE-2024-36266", cwe: { id: "CWE-287", name: "Improper Authentication", }, notes: [ { category: "other", text: "Improper Authentication", title: "CWE-287", }, ], references: [ { category: "self", summary: "CVE-2024-36266", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36266.json", }, ], title: "CVE-2024-36266", }, { cve: "CVE-2021-47178", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, notes: [ { category: "other", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2021-47178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-47178.json", }, ], title: "CVE-2021-47178", }, { cve: "CVE-2022-1015", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-1015", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-1015.json", }, ], title: "CVE-2022-1015", }, { cve: "CVE-2022-2097", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2022-2097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2097.json", }, ], title: "CVE-2022-2097", }, { cve: "CVE-2022-3435", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2022-3435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3435.json", }, ], title: "CVE-2022-3435", }, { cve: "CVE-2022-3545", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-3545", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3545.json", }, ], title: "CVE-2022-3545", }, { cve: "CVE-2022-3623", cwe: { id: "CWE-123", name: "Write-what-where Condition", }, notes: [ { category: "other", text: "Write-what-where Condition", title: "CWE-123", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-3623", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3623.json", }, ], title: "CVE-2022-3623", }, { cve: "CVE-2022-3643", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-3643", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3643.json", }, ], title: "CVE-2022-3643", }, { cve: "CVE-2022-4304", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, ], references: [ { category: "self", summary: "CVE-2022-4304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4304.json", }, ], title: "CVE-2022-4304", }, { cve: "CVE-2022-4450", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-4450", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4450.json", }, ], title: "CVE-2022-4450", }, { cve: "CVE-2022-36323", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-36323", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36323.json", }, ], title: "CVE-2022-36323", }, { cve: "CVE-2022-39189", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, ], references: [ { category: "self", summary: "CVE-2022-39189", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-39189.json", }, ], title: "CVE-2022-39189", }, { cve: "CVE-2022-40225", cwe: { id: "CWE-681", name: "Incorrect Conversion between Numeric Types", }, notes: [ { category: "other", text: "Incorrect Conversion between Numeric Types", title: "CWE-681", }, ], references: [ { category: "self", summary: "CVE-2022-40225", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40225.json", }, ], title: "CVE-2022-40225", }, { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2022-40303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40303.json", }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-40304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40304.json", }, ], title: "CVE-2022-40304", }, { cve: "CVE-2022-41742", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-41742", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-41742.json", }, ], title: "CVE-2022-41742", }, { cve: "CVE-2022-42328", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42328", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42328.json", }, ], title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42329", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42329.json", }, ], title: "CVE-2022-42329", }, { cve: "CVE-2022-44792", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44792.json", }, ], title: "CVE-2022-44792", }, { cve: "CVE-2022-44793", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44793.json", }, ], title: "CVE-2022-44793", }, { cve: "CVE-2022-45886", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2022-45886", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45886.json", }, ], title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-45887", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45887.json", }, ], title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-45919", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45919.json", }, ], title: "CVE-2022-45919", }, { cve: "CVE-2022-46144", cwe: { id: "CWE-664", name: "Improper Control of a Resource Through its Lifetime", }, notes: [ { category: "other", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, ], references: [ { category: "self", summary: "CVE-2022-46144", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-46144.json", }, ], title: "CVE-2022-46144", }, { cve: "CVE-2023-0160", cwe: { id: "CWE-833", name: "Deadlock", }, notes: [ { category: "other", text: "Deadlock", title: "CWE-833", }, { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-0160", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0160.json", }, ], title: "CVE-2023-0160", }, { cve: "CVE-2023-0215", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-0215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json", }, ], title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-0286", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json", }, ], title: "CVE-2023-0286", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-0464", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0464.json", }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0465.json", }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0466", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0466.json", }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-1017", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-1017", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-1017.json", }, ], title: "CVE-2023-1017", }, { cve: "CVE-2023-2124", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-2124", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2124.json", }, ], title: "CVE-2023-2124", }, { cve: "CVE-2023-2269", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-2269", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2269.json", }, ], title: "CVE-2023-2269", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, ], references: [ { category: "self", summary: "CVE-2023-3446", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3446.json", }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-3817", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Excessive Iteration", title: "CWE-834", }, ], references: [ { category: "self", summary: "CVE-2023-3817", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3817.json", }, ], title: "CVE-2023-3817", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "other", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2023-5678", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json", }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21255", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-21255", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21255.json", }, ], title: "CVE-2023-21255", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-21808", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21808.json", }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24895", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24895.json", }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-24897", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24897.json", }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24936", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24936.json", }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-26552", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26552", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26552.json", }, ], title: "CVE-2023-26552", }, { cve: "CVE-2023-26553", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26553", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26553.json", }, ], title: "CVE-2023-26553", }, { cve: "CVE-2023-26554", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26554", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26554.json", }, ], title: "CVE-2023-26554", }, { cve: "CVE-2023-27321", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-27321", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27321.json", }, ], title: "CVE-2023-27321", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-28260", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28260.json", }, ], title: "CVE-2023-28260", }, ], }
NCSC-2024-0246
Vulnerability from csaf_ncscnl
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Siemens heeft kwetsbaarheden verholpen in diverse producten, zoals SCALANCE, SICAM, Tecnomatix, SITOP en PowerSys.", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van beveiligingsmaatregel\n- (Remote) code execution (Administrator/Root rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Verhoogde gebruikersrechten\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.\n", title: "Interpretaties", }, { category: "description", text: "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "general", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "general", text: "Heap-based Buffer Overflow", title: "CWE-122", }, { category: "general", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "general", text: "Write-what-where Condition", title: "CWE-123", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, { category: "general", text: "Improper Null Termination", title: "CWE-170", }, { category: "general", text: "Integer Overflow or Wraparound", title: "CWE-190", }, { category: "general", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Privilege Management", title: "CWE-269", }, { category: "general", text: "Improper Authentication", title: "CWE-287", }, { category: "general", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "general", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "general", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, { category: "general", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, { category: "general", text: "Missing Cryptographic Step", title: "CWE-325", }, { category: "general", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "general", text: "Use of Weak Hash", title: "CWE-328", }, { category: "general", text: "Use of Insufficiently Random Values", title: "CWE-330", }, { category: "general", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, { category: "general", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, { category: "general", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "general", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "general", text: "Double Free", title: "CWE-415", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Insufficiently Protected Credentials", title: "CWE-522", }, { category: "general", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, { category: "general", text: "Insufficient Session Expiration", title: "CWE-613", }, { category: "general", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, { category: "general", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, { category: "general", text: "Improper Locking", title: "CWE-667", }, { category: "general", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "general", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, { category: "general", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, { category: "general", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "general", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "general", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Deadlock", title: "CWE-833", }, { category: "general", text: "Excessive Iteration", title: "CWE-834", }, { category: "general", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-024584.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-196737.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-238730.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-319319.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-337522.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-481506.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-540640.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-620338.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-625862.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-690517.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-879734.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-900277.pdf", }, ], title: "Kwetsbaarheden verholpen in Siemens producten", tracking: { current_release_date: "2024-06-11T13:29:25.912614Z", id: "NCSC-2024-0246", initial_release_date: "2024-06-11T13:29:25.912614Z", revision_history: [ { date: "2024-06-11T13:29:25.912614Z", number: "0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "mendix", product: { name: "mendix", product_id: "CSAFPID-538452", product_identification_helper: { cpe: "cpe:2.3:a:siemens:mendix:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "simatic", product: { name: "simatic", product_id: "CSAFPID-166121", product_identification_helper: { cpe: "cpe:2.3:a:siemens:simatic:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sinec-nms", product: { name: "sinec-nms", product_id: "CSAFPID-163798", product_identification_helper: { cpe: "cpe:2.3:a:siemens:sinec-nms:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tecnomatix_plant_simulation", product: { name: "tecnomatix_plant_simulation", product_id: "CSAFPID-166120", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tia_administrator", product: { name: "tia_administrator", product_id: "CSAFPID-766096", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_w700", product: { name: "scalance_w700", product_id: "CSAFPID-1009262", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xm-400", product: { name: "scalance_xm-400", product_id: "CSAFPID-1014214", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xr-500", product: { name: "scalance_xr-500", product_id: "CSAFPID-1014213", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xr-500:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_ak_3", product: { name: "sicam_ak_3", product_id: "CSAFPID-1007975", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_ak_3:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_bc", product: { name: "sicam_bc", product_id: "CSAFPID-1007979", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_bc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_tm", product: { name: "sicam_tm", product_id: "CSAFPID-1007978", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_tm:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "siplus_tim_1531_irc", product: { name: "siplus_tim_1531_irc", product_id: "CSAFPID-1326635", product_identification_helper: { cpe: "cpe:2.3:h:siemens:siplus_tim_1531_irc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sitop_ups1600", product: { name: "sitop_ups1600", product_id: "CSAFPID-1037908", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sitop_ups1600:-:*:*:*:*:*:*:*", }, }, }, ], category: "vendor", name: "siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28319", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-28319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28319.json", }, ], title: "CVE-2023-28319", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-28484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28484.json", }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-29331", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29331.json", }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2023-29469", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29469.json", }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-32032", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-32032.json", }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33126", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33126.json", }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-1220", name: "Insufficient Granularity of Access Control", }, notes: [ { category: "other", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33127", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33127.json", }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-33128", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33128.json", }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33135", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33135.json", }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33170", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33170.json", }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35390", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35390.json", }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35391", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35391.json", }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-35788", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-35788", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35788.json", }, ], title: "CVE-2023-35788", }, { cve: "CVE-2023-35823", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35823", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35823.json", }, ], title: "CVE-2023-35823", }, { cve: "CVE-2023-35824", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35824", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35824.json", }, ], title: "CVE-2023-35824", }, { cve: "CVE-2023-35828", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35828", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35828.json", }, ], title: "CVE-2023-35828", }, { cve: "CVE-2023-35829", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-35829", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35829.json", }, ], title: "CVE-2023-35829", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36038", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36038.json", }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], references: [ { category: "self", summary: "CVE-2023-36049", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36049.json", }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36435.json", }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36558", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36558.json", }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2023-36792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36792.json", }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-36793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36793.json", }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-36794", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36794.json", }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, ], references: [ { category: "self", summary: "CVE-2023-36796", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36796.json", }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36799", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36799.json", }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38171.json", }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38178.json", }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38180.json", }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-38380", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, ], references: [ { category: "self", summary: "CVE-2023-38380", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38380.json", }, ], title: "CVE-2023-38380", }, { cve: "CVE-2023-38533", cwe: { id: "CWE-379", name: "Creation of Temporary File in Directory with Insecure Permissions", }, notes: [ { category: "other", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, ], references: [ { category: "self", summary: "CVE-2023-38533", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38533.json", }, ], title: "CVE-2023-38533", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-39615", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39615.json", }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-41910", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-41910", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41910.json", }, ], title: "CVE-2023-41910", }, { cve: "CVE-2023-44317", cwe: { id: "CWE-349", name: "Acceptance of Extraneous Untrusted Data With Trusted Data", }, notes: [ { category: "other", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, ], references: [ { category: "self", summary: "CVE-2023-44317", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44317.json", }, ], title: "CVE-2023-44317", }, { cve: "CVE-2023-44318", cwe: { id: "CWE-321", name: "Use of Hard-coded Cryptographic Key", }, notes: [ { category: "other", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, ], references: [ { category: "self", summary: "CVE-2023-44318", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44318.json", }, ], title: "CVE-2023-44318", }, { cve: "CVE-2023-44319", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, notes: [ { category: "other", text: "Use of Weak Hash", title: "CWE-328", }, ], references: [ { category: "self", summary: "CVE-2023-44319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44319.json", }, ], title: "CVE-2023-44319", }, { cve: "CVE-2023-44373", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2023-44373", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44373.json", }, ], title: "CVE-2023-44373", }, { cve: "CVE-2023-44374", cwe: { id: "CWE-567", name: "Unsynchronized Access to Shared Data in a Multithreaded Context", }, notes: [ { category: "other", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, ], references: [ { category: "self", summary: "CVE-2023-44374", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44374.json", }, ], title: "CVE-2023-44374", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-44487", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json", }, ], title: "CVE-2023-44487", }, { cve: "CVE-2023-49691", cwe: { id: "CWE-78", name: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, ], references: [ { category: "self", summary: "CVE-2023-49691", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-49691.json", }, ], title: "CVE-2023-49691", }, { cve: "CVE-2023-50763", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, notes: [ { category: "other", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, ], references: [ { category: "self", summary: "CVE-2023-50763", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50763.json", }, ], title: "CVE-2023-50763", }, { cve: "CVE-2023-52474", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-52474", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52474.json", }, ], title: "CVE-2023-52474", }, { cve: "CVE-2024-0775", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-0775", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0775.json", }, ], title: "CVE-2024-0775", }, { cve: "CVE-2024-31484", cwe: { id: "CWE-170", name: "Improper Null Termination", }, notes: [ { category: "other", text: "Improper Null Termination", title: "CWE-170", }, ], references: [ { category: "self", summary: "CVE-2024-31484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31484.json", }, ], title: "CVE-2024-31484", }, { cve: "CVE-2024-33500", cwe: { id: "CWE-269", name: "Improper Privilege Management", }, notes: [ { category: "other", text: "Improper Privilege Management", title: "CWE-269", }, ], references: [ { category: "self", summary: "CVE-2024-33500", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33500.json", }, ], title: "CVE-2024-33500", }, { cve: "CVE-2024-35206", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, notes: [ { category: "other", text: "Insufficient Session Expiration", title: "CWE-613", }, ], references: [ { category: "self", summary: "CVE-2024-35206", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35206.json", }, ], title: "CVE-2024-35206", }, { cve: "CVE-2024-35207", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, notes: [ { category: "other", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, ], references: [ { category: "self", summary: "CVE-2024-35207", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35207.json", }, ], title: "CVE-2024-35207", }, { cve: "CVE-2024-35208", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, notes: [ { category: "other", text: "Insufficiently Protected Credentials", title: "CWE-522", }, ], references: [ { category: "self", summary: "CVE-2024-35208", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35208.json", }, ], title: "CVE-2024-35208", }, { cve: "CVE-2024-35209", cwe: { id: "CWE-749", name: "Exposed Dangerous Method or Function", }, notes: [ { category: "other", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, ], references: [ { category: "self", summary: "CVE-2024-35209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35209.json", }, ], title: "CVE-2024-35209", }, { cve: "CVE-2024-35210", cwe: { id: "CWE-319", name: "Cleartext Transmission of Sensitive Information", }, notes: [ { category: "other", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, ], references: [ { category: "self", summary: "CVE-2024-35210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35210.json", }, ], title: "CVE-2024-35210", }, { cve: "CVE-2024-35211", cwe: { id: "CWE-614", name: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", }, notes: [ { category: "other", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, ], references: [ { category: "self", summary: "CVE-2024-35211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35211.json", }, ], title: "CVE-2024-35211", }, { cve: "CVE-2024-35212", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-35212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35212.json", }, ], title: "CVE-2024-35212", }, { cve: "CVE-2024-35292", cwe: { id: "CWE-330", name: "Use of Insufficiently Random Values", }, notes: [ { category: "other", text: "Use of Insufficiently Random Values", title: "CWE-330", }, ], references: [ { category: "self", summary: "CVE-2024-35292", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35292.json", }, ], title: "CVE-2024-35292", }, { cve: "CVE-2024-35303", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, ], product_status: { known_affected: [ "CSAFPID-166120", ], }, references: [ { category: "self", summary: "CVE-2024-35303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35303.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-166120", ], }, ], title: "CVE-2024-35303", }, { cve: "CVE-2024-36266", cwe: { id: "CWE-287", name: "Improper Authentication", }, notes: [ { category: "other", text: "Improper Authentication", title: "CWE-287", }, ], references: [ { category: "self", summary: "CVE-2024-36266", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36266.json", }, ], title: "CVE-2024-36266", }, { cve: "CVE-2021-47178", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, notes: [ { category: "other", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2021-47178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-47178.json", }, ], title: "CVE-2021-47178", }, { cve: "CVE-2022-1015", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-1015", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-1015.json", }, ], title: "CVE-2022-1015", }, { cve: "CVE-2022-2097", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2022-2097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2097.json", }, ], title: "CVE-2022-2097", }, { cve: "CVE-2022-3435", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2022-3435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3435.json", }, ], title: "CVE-2022-3435", }, { cve: "CVE-2022-3545", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-3545", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3545.json", }, ], title: "CVE-2022-3545", }, { cve: "CVE-2022-3623", cwe: { id: "CWE-123", name: "Write-what-where Condition", }, notes: [ { category: "other", text: "Write-what-where Condition", title: "CWE-123", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-3623", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3623.json", }, ], title: "CVE-2022-3623", }, { cve: "CVE-2022-3643", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-3643", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3643.json", }, ], title: "CVE-2022-3643", }, { cve: "CVE-2022-4304", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, ], references: [ { category: "self", summary: "CVE-2022-4304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4304.json", }, ], title: "CVE-2022-4304", }, { cve: "CVE-2022-4450", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-4450", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4450.json", }, ], title: "CVE-2022-4450", }, { cve: "CVE-2022-36323", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-36323", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36323.json", }, ], title: "CVE-2022-36323", }, { cve: "CVE-2022-39189", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, ], references: [ { category: "self", summary: "CVE-2022-39189", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-39189.json", }, ], title: "CVE-2022-39189", }, { cve: "CVE-2022-40225", cwe: { id: "CWE-681", name: "Incorrect Conversion between Numeric Types", }, notes: [ { category: "other", text: "Incorrect Conversion between Numeric Types", title: "CWE-681", }, ], references: [ { category: "self", summary: "CVE-2022-40225", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40225.json", }, ], title: "CVE-2022-40225", }, { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2022-40303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40303.json", }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-40304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40304.json", }, ], title: "CVE-2022-40304", }, { cve: "CVE-2022-41742", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-41742", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-41742.json", }, ], title: "CVE-2022-41742", }, { cve: "CVE-2022-42328", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42328", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42328.json", }, ], title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42329", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42329.json", }, ], title: "CVE-2022-42329", }, { cve: "CVE-2022-44792", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44792.json", }, ], title: "CVE-2022-44792", }, { cve: "CVE-2022-44793", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44793.json", }, ], title: "CVE-2022-44793", }, { cve: "CVE-2022-45886", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2022-45886", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45886.json", }, ], title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-45887", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45887.json", }, ], title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-45919", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45919.json", }, ], title: "CVE-2022-45919", }, { cve: "CVE-2022-46144", cwe: { id: "CWE-664", name: "Improper Control of a Resource Through its Lifetime", }, notes: [ { category: "other", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, ], references: [ { category: "self", summary: "CVE-2022-46144", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-46144.json", }, ], title: "CVE-2022-46144", }, { cve: "CVE-2023-0160", cwe: { id: "CWE-833", name: "Deadlock", }, notes: [ { category: "other", text: "Deadlock", title: "CWE-833", }, { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-0160", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0160.json", }, ], title: "CVE-2023-0160", }, { cve: "CVE-2023-0215", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-0215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json", }, ], title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-0286", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json", }, ], title: "CVE-2023-0286", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-0464", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0464.json", }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0465.json", }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0466", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0466.json", }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-1017", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-1017", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-1017.json", }, ], title: "CVE-2023-1017", }, { cve: "CVE-2023-2124", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-2124", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2124.json", }, ], title: "CVE-2023-2124", }, { cve: "CVE-2023-2269", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-2269", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2269.json", }, ], title: "CVE-2023-2269", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, ], references: [ { category: "self", summary: "CVE-2023-3446", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3446.json", }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-3817", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Excessive Iteration", title: "CWE-834", }, ], references: [ { category: "self", summary: "CVE-2023-3817", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3817.json", }, ], title: "CVE-2023-3817", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "other", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2023-5678", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json", }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21255", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-21255", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21255.json", }, ], title: "CVE-2023-21255", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-21808", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21808.json", }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24895", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24895.json", }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-24897", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24897.json", }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24936", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24936.json", }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-26552", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26552", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26552.json", }, ], title: "CVE-2023-26552", }, { cve: "CVE-2023-26553", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26553", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26553.json", }, ], title: "CVE-2023-26553", }, { cve: "CVE-2023-26554", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26554", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26554.json", }, ], title: "CVE-2023-26554", }, { cve: "CVE-2023-27321", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-27321", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27321.json", }, ], title: "CVE-2023-27321", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-28260", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28260.json", }, ], title: "CVE-2023-28260", }, ], }
gsd-2023-33128
Vulnerability from gsd
{ GSD: { alias: "CVE-2023-33128", id: "GSD-2023-33128", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-33128", ], details: ".NET and Visual Studio Remote Code Execution Vulnerability", id: "GSD-2023-33128", modified: "2023-12-13T01:20:37.717951Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "secure@microsoft.com", ID: "CVE-2023-33128", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: ".NET 6.0", version: { version_data: [ { version_affected: "<", version_name: "6.0.0", version_value: "6.0.18", }, ], }, }, { product_name: ".NET 7.0", version: { version_data: [ { version_affected: "<", version_name: "7.0.0", version_value: "7.0.7", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.0", version: { version_data: [ { version_affected: "<", version_name: "17.0.0", version_value: "17.0.22", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.2", version: { version_data: [ { version_affected: "<", version_name: "17.2.0", version_value: "17.2.16", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.4", version: { version_data: [ { version_affected: "<", version_name: "17.4.0", version_value: "17.4.8", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.6", version: { version_data: [ { version_affected: "<", version_name: "17.6.0", version_value: "17.6.3", }, ], }, }, { product_name: "PowerShell 7.3", version: { version_data: [ { version_affected: "<", version_name: "7.3.0", version_value: "7.3.5", }, ], }, }, ], }, vendor_name: "Microsoft", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: ".NET and Visual Studio Remote Code Execution Vulnerability", }, ], }, impact: { cvss: [ { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Remote Code Execution", }, ], }, ], }, references: { reference_data: [ { name: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", refsource: "MISC", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-arm", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "58e9a58f-9e3e-44af-85db-28124c4eb729", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-arm64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "f862d735-ffaf-4cc9-a4f8-1a0f6d1c0c93", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "f7aea347-dece-422d-b2ac-3ef1ad9e0bda", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "3a13e696-1519-4477-89f6-322cbbc0809e", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-x64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "0ac66544-9bb8-4556-ab7a-918a6e3abcee", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-x64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "e2e58c5e-7ef3-4a4d-a6bc-4988530cf50e", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.osx-arm64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "b515d7ea-604b-4234-b834-24409361e27c", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.osx-x64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "9a570a85-2e31-47b8-bcbd-8a2e1ad126fc", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-arm", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "31c7fbd7-1bba-4e35-92ed-02a9cbce9852", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-arm64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "96cdeb80-6846-4362-84c8-fc1226846827", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-x64", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "38e3199b-6988-4f77-8178-b41a8923429b", }, { affected_range: "[7.0.0,7.0.5]", affected_versions: "All versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET and Visual Studio Remote Code Execution Vulnerability", fixed_versions: [ "7.0.7", ], identifier: "CVE-2023-33128", identifiers: [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128", ], not_impacted: "All versions before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-x86", pubdate: "2023-06-14", solution: "Upgrade to version 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9", ], uuid: "b1c9fb76-abe3-4652-ad1a-fec4b1c23d0b", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "17.0.22", versionStartIncluding: "17.0", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "17.2.16", versionStartIncluding: "17.2", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "17.4.8", versionStartIncluding: "17.4", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "17.6.3", versionStartIncluding: "17.6", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "6.0.18", versionStartIncluding: "6.0.0", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "7.0.7", versionStartIncluding: "7.0.0", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "secure@microsoft.com", ID: "CVE-2023-33128", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: ".NET and Visual Studio Remote Code Execution Vulnerability", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], }, ], }, references: { reference_data: [ { name: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", refsource: "MISC", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.3, impactScore: 5.9, }, }, lastModifiedDate: "2023-06-21T19:48Z", publishedDate: "2023-06-14T00:15Z", }, }, }
ssa-341067
Vulnerability from csaf_siemens
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited. (TLPv2: TLP:CLEAR)", tlp: { label: "WHITE", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "productcert@siemens.com", name: "Siemens ProductCERT", namespace: "https://www.siemens.com", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, ], title: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", tracking: { current_release_date: "2024-06-11T00:00:00Z", generator: { engine: { name: "Siemens ProductCERT CSAF Generator", version: "1", }, }, id: "SSA-341067", initial_release_date: "2024-06-11T00:00:00Z", revision_history: [ { date: "2024-06-11T00:00:00Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "interim", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "1", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-44487", }, ], }
SSA-341067
Vulnerability from csaf_siemens
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited. (TLPv2: TLP:CLEAR)", tlp: { label: "WHITE", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "productcert@siemens.com", name: "Siemens ProductCERT", namespace: "https://www.siemens.com", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, ], title: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", tracking: { current_release_date: "2024-06-11T00:00:00Z", generator: { engine: { name: "Siemens ProductCERT CSAF Generator", version: "1", }, }, id: "SSA-341067", initial_release_date: "2024-06-11T00:00:00Z", revision_history: [ { date: "2024-06-11T00:00:00Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "interim", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "1", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-44487", }, ], }
ghsa-x469-cv7m-77r9
Vulnerability from github
Microsoft Security Advisory CVE-2023-33128: .NET Remote Code Execution Vulnerability
Executive summary
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
A vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing.
Announcement
Announcement for this issue can be found at https://github.com/dotnet/announcements/issues/253
Mitigation factors
Microsoft has not identified any mitigating factors for this vulnerability.
Affected software
- Any .NET 7.0.1xx SDK 7.0.106 or earlier.
- Any .NET 7.0.3xx SDK 7.0.303 or earlier.
If your application uses the following package versions, ensure you update to the latest version of .NET.
.NET 7
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.NetCore.App.Runtime.linux-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x86 | >= 7.0.0, <= 7.0.5 | 7.0.7
Advisory FAQ
How do I know if I am affected?
If you have a runtime or SDK with a version listed, or an affected package listed in affected software, you're exposed to the vulnerability.
How do I fix the issue?
- To fix the issue please install the latest version of .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.
- If you are using one of the affected packages, please update to the patched version listed above.
- If you are a library author and have used one of the affected versions listed above, please update, recompile, and redistribute your libraries.
- If you have .NET 7.0 or greater installed, you can list the versions you have installed by running the
dotnet --info
command. You will see output like the following;
``` .NET Core SDK (reflecting any global.json):
Version: 6.0.300 Commit: 8473146e7d
Runtime Environment:
OS Name: Windows OS Version: 10.0.18363 OS Platform: Windows RID: win10-x64 Base Path: C:\Program Files\dotnet\sdk\6.0.300\
Host (useful for support):
Version: 6.0.5 Commit: 8473146e7d
.NET Core SDKs installed:
6.0.300 [C:\Program Files\dotnet\sdk]
.NET Core runtimes installed:
Microsoft.AspNetCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.AspNetCore.App] Microsoft.NETCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.NETCore.App] Microsoft.WindowsDesktop.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App]
To install additional .NET Core runtimes or SDKs: https://aka.ms/dotnet-download ```
- If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.
.NET 7.0 updates are also available from Microsoft Update. To access this either type "Check for updates" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.
Once you have installed the updated runtime or SDK, restart your apps for the update to take effect.
Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.
Other Information
Reporting Security Issues
If you have found a potential security issue in .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at https://aka.ms/corebounty.
Support
You can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
External Links
Revisions
V1.0 (June 13, 2023): Advisory published.
Version 1.0
Last Updated 2023-06-13
{ affected: [ { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x86", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2023-33128", ], database_specific: { cwe_ids: [ "CWE-416", ], github_reviewed: true, github_reviewed_at: "2023-06-14T17:17:02Z", nvd_published_at: "2023-06-14T00:15:11Z", severity: "HIGH", }, details: "# Microsoft Security Advisory CVE-2023-33128: .NET Remote Code Execution Vulnerability\n\n## <a name=\"executive-summary\"></a>Executive summary\n\nMicrosoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.\n\nA vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing.\n\n## Announcement\n\nAnnouncement for this issue can be found at https://github.com/dotnet/announcements/issues/253\n\n### <a name=\"mitigation-factors\"></a>Mitigation factors\n\nMicrosoft has not identified any mitigating factors for this vulnerability.\n\n## <a name=\"affected-software\"></a>Affected software\n\n* Any .NET 7.0.1xx SDK 7.0.106 or earlier.\n* Any .NET 7.0.3xx SDK 7.0.303 or earlier.\n\nIf your application uses the following package versions, ensure you update to the latest version of .NET.\n\n### <a name=\".NET 7\"></a>.NET 7\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | >= 7.0.0, <= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | >= 7.0.0, <= 7.0.5 | 7.0.7\n\n## Advisory FAQ\n\n### <a name=\"how-affected\"></a>How do I know if I am affected?\n\nIf you have a runtime or SDK with a version listed, or an affected package listed in [affected software](#affected-software), you're exposed to the vulnerability.\n\n### <a name=\"how-fix\"></a>How do I fix the issue?\n\n* To fix the issue please install the latest version of .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.\n* If you are using one of the affected packages, please update to the patched version listed above.\n* If you are a library author and have used one of the affected versions listed above, please update, recompile, and redistribute your libraries.\n* If you have .NET 7.0 or greater installed, you can list the versions you have installed by running the `dotnet --info` command. You will see output like the following;\n\n```\n.NET Core SDK (reflecting any global.json):\n\n Version: 6.0.300\n Commit: 8473146e7d\n\nRuntime Environment:\n\n OS Name: Windows\n OS Version: 10.0.18363\n OS Platform: Windows\n RID: win10-x64\n Base Path: C:\\Program Files\\dotnet\\sdk\\6.0.300\\\n\nHost (useful for support):\n\n Version: 6.0.5\n Commit: 8473146e7d\n\n.NET Core SDKs installed:\n\n 6.0.300 [C:\\Program Files\\dotnet\\sdk]\n\n.NET Core runtimes installed:\n\n Microsoft.AspNetCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.AspNetCore.App]\n Microsoft.NETCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.NETCore.App]\n Microsoft.WindowsDesktop.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.WindowsDesktop.App]\n\nTo install additional .NET Core runtimes or SDKs:\n https://aka.ms/dotnet-download\n```\n\n* If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.\n\n.NET 7.0 updates are also available from Microsoft Update. To access this either type \"Check for updates\" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.\n\nOnce you have installed the updated runtime or SDK, restart your apps for the update to take effect.\n\nAdditionally, if you've deployed [self-contained applications](https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd) targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.\n\n## Other Information\n\n### Reporting Security Issues\n\nIf you have found a potential security issue in .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at <https://aka.ms/corebounty>.\n\n### Support\n\nYou can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.\n\n### Disclaimer\n\nThe information provided in this advisory is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\n\n### External Links\n\n[CVE-2023-33128]( https://www.cve.org/CVERecord?id=2023-33128)\n\n### Revisions\n\nV1.0 (June 13, 2023): Advisory published.\n\n_Version 1.0_\n\n_Last Updated 2023-06-13_", id: "GHSA-x469-cv7m-77r9", modified: "2024-07-30T21:12:55Z", published: "2023-06-14T17:17:02Z", references: [ { type: "WEB", url: "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", }, { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { type: "WEB", url: "https://github.com/dotnet/announcements/issues/253", }, { type: "PACKAGE", url: "https://github.com/dotnet/sdk", }, { type: "WEB", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], summary: ".NET Remote Code Execution Vulnerability", }
WID-SEC-W-2023-1446
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte.\r\nNuGet ist ein Programm für die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1446 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json", }, { category: "self", summary: "WID-SEC-2023-1446 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", url: "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", url: "https://ubuntu.com/security/notices/USN-6161-2", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3592.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3593.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", url: "https://linux.oracle.com/errata/ELSA-2023-3582.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", url: "http://linux.oracle.com/errata/ELSA-2023-3581.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", url: "https://ubuntu.com/security/notices/USN-6161-1", }, { category: "external", summary: "Microsoft Leitfaden für Sicherheitsupdates vom 2023-06-13", url: "https://msrc.microsoft.com/update-guide", }, ], source_lang: "en-US", title: "Microsoft Developer Tools: Mehrere Schwachstellen", tracking: { current_release_date: "2023-09-25T22:00:00.000+00:00", generator: { date: "2024-08-15T17:52:25.204+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1446", initial_release_date: "2023-06-13T22:00:00.000+00:00", revision_history: [ { date: "2023-06-13T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-14T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-06-15T22:00:00.000+00:00", number: "3", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-18T22:00:00.000+00:00", number: "4", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-25T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Ubuntu aufgenommen", }, { date: "2023-08-02T22:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-09-25T22:00:00.000+00:00", number: "7", summary: "Neue Updates von HITACHI aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Hitachi Storage Virtual Storage Platform", product: { name: "Hitachi Storage Virtual Storage Platform", product_id: "T020487", product_identification_helper: { cpe: "cpe:/h:hitachi:storage:virtual_storage_platform", }, }, }, ], category: "vendor", name: "Hitachi", }, { branches: [ { branches: [ { category: "product_name", name: "Microsoft .NET Framework 4.8.1", product: { name: "Microsoft .NET Framework 4.8.1", product_id: "1273212", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5.1", product: { name: "Microsoft .NET Framework 3.5.1", product_id: "130815", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.6.2", product: { name: "Microsoft .NET Framework 4.6.2", product_id: "336763", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.6.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7", product: { name: "Microsoft .NET Framework 4.7", product_id: "432554", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.1", product: { name: "Microsoft .NET Framework 4.7.1", product_id: "432555", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.2", product: { name: "Microsoft .NET Framework 4.7.2", product_id: "432556", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.8", product: { name: "Microsoft .NET Framework 4.8", product_id: "432557", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5", product: { name: "Microsoft .NET Framework 3.5", product_id: "834793", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5:-", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 2.0 SP2", product: { name: "Microsoft .NET Framework 2.0 SP2", product_id: "T021515", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:2.0_sp2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.0 SP2", product: { name: "Microsoft .NET Framework 3.0 SP2", product_id: "T024564", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.0_sp2", }, }, }, ], category: "product_name", name: ".NET Framework", }, { category: "product_name", name: "Microsoft Azure DevOps Server 2020.1.2", product: { name: "Microsoft Azure DevOps Server 2020.1.2", product_id: "1342801", product_identification_helper: { cpe: "cpe:/o:microsoft:azure_devops_server:2020.1.2:-", }, }, }, { branches: [ { category: "product_name", name: "Microsoft NuGet 6.0.4", product: { name: "Microsoft NuGet 6.0.4", product_id: "T028096", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.0.4", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.2.3", product: { name: "Microsoft NuGet 6.2.3", product_id: "T028097", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.2.3", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.3.2", product: { name: "Microsoft NuGet 6.3.2", product_id: "T028098", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.3.2", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.4.1", product: { name: "Microsoft NuGet 6.4.1", product_id: "T028099", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.4.1", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.5.0", product: { name: "Microsoft NuGet 6.5.0", product_id: "T028100", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.5.0", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.6.0", product: { name: "Microsoft NuGet 6.6.0", product_id: "T028101", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.6.0", }, }, }, ], category: "product_name", name: "NuGet", }, { category: "product_name", name: "Microsoft Visual Studio 2013 Update 5", product: { name: "Microsoft Visual Studio 2013 Update 5", product_id: "T014512", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2013:update_5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2015 Update 3", product: { name: "Microsoft Visual Studio 2015 Update 3", product_id: "T014511", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2015:update_3", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2017 version 15.9", product: { name: "Microsoft Visual Studio 2017 version 15.9", product_id: "T015502", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2017:version_15.9", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2019 version 16.11", product: { name: "Microsoft Visual Studio 2019 version 16.11", product_id: "T024563", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2019:version_16.11", }, }, }, { branches: [ { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", product: { name: "Microsoft Visual Studio 2022 version 17.0", product_id: "T026754", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.0", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", product: { name: "Microsoft Visual Studio 2022 version 17.2", product_id: "T028102", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.2", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", product: { name: "Microsoft Visual Studio 2022 version 17.4", product_id: "T028103", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.4", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.5", product: { name: "Microsoft Visual Studio 2022 version 17.5", product_id: "T028104", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", product: { name: "Microsoft Visual Studio 2022 version 17.6", product_id: "T028105", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.6", }, }, }, ], category: "product_name", name: "Visual Studio 2022", }, { category: "product_name", name: "Microsoft Visual Studio Code", product: { name: "Microsoft Visual Studio Code", product_id: "699261", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_code:-", }, }, }, ], category: "vendor", name: "Microsoft", }, { branches: [ { category: "product_name", name: "Oracle Linux", product: { name: "Oracle Linux", product_id: "T004914", product_identification_helper: { cpe: "cpe:/o:oracle:linux:-", }, }, }, ], category: "vendor", name: "Oracle", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2023-33144", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33144", }, { cve: "CVE-2023-33141", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33141", }, { cve: "CVE-2023-33139", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33139", }, { cve: "CVE-2023-33135", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33135", }, { cve: "CVE-2023-33128", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33128", }, { cve: "CVE-2023-33126", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33126", }, { cve: "CVE-2023-32032", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32032", }, { cve: "CVE-2023-32030", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32030", }, { cve: "CVE-2023-29353", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29353", }, { cve: "CVE-2023-29337", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29337", }, { cve: "CVE-2023-29331", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29331", }, { cve: "CVE-2023-29326", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29326", }, { cve: "CVE-2023-29012", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29012", }, { cve: "CVE-2023-29011", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29011", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-27911", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27911", }, { cve: "CVE-2023-27910", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27910", }, { cve: "CVE-2023-27909", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27909", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-24936", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24936", }, { cve: "CVE-2023-24897", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24897", }, { cve: "CVE-2023-24895", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24895", }, { cve: "CVE-2023-21569", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21569", }, { cve: "CVE-2023-21565", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21565", }, ], }
wid-sec-w-2023-1446
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte.\r\nNuGet ist ein Programm für die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1446 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json", }, { category: "self", summary: "WID-SEC-2023-1446 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", url: "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", url: "https://ubuntu.com/security/notices/USN-6161-2", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3592.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3593.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", url: "https://linux.oracle.com/errata/ELSA-2023-3582.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", url: "http://linux.oracle.com/errata/ELSA-2023-3581.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", url: "https://ubuntu.com/security/notices/USN-6161-1", }, { category: "external", summary: "Microsoft Leitfaden für Sicherheitsupdates vom 2023-06-13", url: "https://msrc.microsoft.com/update-guide", }, ], source_lang: "en-US", title: "Microsoft Developer Tools: Mehrere Schwachstellen", tracking: { current_release_date: "2023-09-25T22:00:00.000+00:00", generator: { date: "2024-08-15T17:52:25.204+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1446", initial_release_date: "2023-06-13T22:00:00.000+00:00", revision_history: [ { date: "2023-06-13T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-14T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-06-15T22:00:00.000+00:00", number: "3", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-18T22:00:00.000+00:00", number: "4", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-25T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Ubuntu aufgenommen", }, { date: "2023-08-02T22:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-09-25T22:00:00.000+00:00", number: "7", summary: "Neue Updates von HITACHI aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Hitachi Storage Virtual Storage Platform", product: { name: "Hitachi Storage Virtual Storage Platform", product_id: "T020487", product_identification_helper: { cpe: "cpe:/h:hitachi:storage:virtual_storage_platform", }, }, }, ], category: "vendor", name: "Hitachi", }, { branches: [ { branches: [ { category: "product_name", name: "Microsoft .NET Framework 4.8.1", product: { name: "Microsoft .NET Framework 4.8.1", product_id: "1273212", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5.1", product: { name: "Microsoft .NET Framework 3.5.1", product_id: "130815", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.6.2", product: { name: "Microsoft .NET Framework 4.6.2", product_id: "336763", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.6.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7", product: { name: "Microsoft .NET Framework 4.7", product_id: "432554", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.1", product: { name: "Microsoft .NET Framework 4.7.1", product_id: "432555", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.2", product: { name: "Microsoft .NET Framework 4.7.2", product_id: "432556", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.8", product: { name: "Microsoft .NET Framework 4.8", product_id: "432557", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5", product: { name: "Microsoft .NET Framework 3.5", product_id: "834793", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5:-", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 2.0 SP2", product: { name: "Microsoft .NET Framework 2.0 SP2", product_id: "T021515", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:2.0_sp2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.0 SP2", product: { name: "Microsoft .NET Framework 3.0 SP2", product_id: "T024564", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.0_sp2", }, }, }, ], category: "product_name", name: ".NET Framework", }, { category: "product_name", name: "Microsoft Azure DevOps Server 2020.1.2", product: { name: "Microsoft Azure DevOps Server 2020.1.2", product_id: "1342801", product_identification_helper: { cpe: "cpe:/o:microsoft:azure_devops_server:2020.1.2:-", }, }, }, { branches: [ { category: "product_name", name: "Microsoft NuGet 6.0.4", product: { name: "Microsoft NuGet 6.0.4", product_id: "T028096", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.0.4", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.2.3", product: { name: "Microsoft NuGet 6.2.3", product_id: "T028097", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.2.3", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.3.2", product: { name: "Microsoft NuGet 6.3.2", product_id: "T028098", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.3.2", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.4.1", product: { name: "Microsoft NuGet 6.4.1", product_id: "T028099", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.4.1", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.5.0", product: { name: "Microsoft NuGet 6.5.0", product_id: "T028100", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.5.0", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.6.0", product: { name: "Microsoft NuGet 6.6.0", product_id: "T028101", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.6.0", }, }, }, ], category: "product_name", name: "NuGet", }, { category: "product_name", name: "Microsoft Visual Studio 2013 Update 5", product: { name: "Microsoft Visual Studio 2013 Update 5", product_id: "T014512", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2013:update_5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2015 Update 3", product: { name: "Microsoft Visual Studio 2015 Update 3", product_id: "T014511", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2015:update_3", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2017 version 15.9", product: { name: "Microsoft Visual Studio 2017 version 15.9", product_id: "T015502", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2017:version_15.9", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2019 version 16.11", product: { name: "Microsoft Visual Studio 2019 version 16.11", product_id: "T024563", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2019:version_16.11", }, }, }, { branches: [ { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", product: { name: "Microsoft Visual Studio 2022 version 17.0", product_id: "T026754", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.0", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", product: { name: "Microsoft Visual Studio 2022 version 17.2", product_id: "T028102", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.2", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", product: { name: "Microsoft Visual Studio 2022 version 17.4", product_id: "T028103", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.4", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.5", product: { name: "Microsoft Visual Studio 2022 version 17.5", product_id: "T028104", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", product: { name: "Microsoft Visual Studio 2022 version 17.6", product_id: "T028105", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.6", }, }, }, ], category: "product_name", name: "Visual Studio 2022", }, { category: "product_name", name: "Microsoft Visual Studio Code", product: { name: "Microsoft Visual Studio Code", product_id: "699261", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_code:-", }, }, }, ], category: "vendor", name: "Microsoft", }, { branches: [ { category: "product_name", name: "Oracle Linux", product: { name: "Oracle Linux", product_id: "T004914", product_identification_helper: { cpe: "cpe:/o:oracle:linux:-", }, }, }, ], category: "vendor", name: "Oracle", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2023-33144", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33144", }, { cve: "CVE-2023-33141", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33141", }, { cve: "CVE-2023-33139", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33139", }, { cve: "CVE-2023-33135", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33135", }, { cve: "CVE-2023-33128", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33128", }, { cve: "CVE-2023-33126", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33126", }, { cve: "CVE-2023-32032", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32032", }, { cve: "CVE-2023-32030", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32030", }, { cve: "CVE-2023-29353", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29353", }, { cve: "CVE-2023-29337", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29337", }, { cve: "CVE-2023-29331", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29331", }, { cve: "CVE-2023-29326", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29326", }, { cve: "CVE-2023-29012", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29012", }, { cve: "CVE-2023-29011", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29011", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-27911", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27911", }, { cve: "CVE-2023-27910", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27910", }, { cve: "CVE-2023-27909", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27909", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-24936", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24936", }, { cve: "CVE-2023-24897", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24897", }, { cve: "CVE-2023-24895", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24895", }, { cve: "CVE-2023-21569", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21569", }, { cve: "CVE-2023-21565", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21565", }, ], }
fkie_cve-2023-33128
Vulnerability from fkie_nvd
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory |
Vendor | Product | Version | |
---|---|---|---|
microsoft | .net | * | |
microsoft | .net | * | |
microsoft | visual_studio_2022 | * | |
microsoft | visual_studio_2022 | * | |
microsoft | visual_studio_2022 | * | |
microsoft | visual_studio_2022 | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", matchCriteriaId: "A00E1F46-D02A-42C8-9292-F38BE98DE1CD", versionEndExcluding: "6.0.18", versionStartIncluding: "6.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", matchCriteriaId: "5FABF6D4-EA23-4234-90D3-0D9306A2994B", versionEndExcluding: "7.0.7", versionStartIncluding: "7.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", matchCriteriaId: "2B1F98BC-0D82-4AEB-9E1E-D67325E99385", versionEndExcluding: "17.0.22", versionStartIncluding: "17.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", matchCriteriaId: "B6B0B496-BC41-4F9D-9A28-AE7664B5C77D", versionEndExcluding: "17.2.16", versionStartIncluding: "17.2", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", matchCriteriaId: "BC861E65-1682-4E99-8A7B-F4A31DDC0198", versionEndExcluding: "17.4.8", versionStartIncluding: "17.4", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", matchCriteriaId: "51DB90D6-C1C4-43B9-8B37-696CB361F37F", versionEndExcluding: "17.6.3", versionStartIncluding: "17.6", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: ".NET and Visual Studio Remote Code Execution Vulnerability", }, ], id: "CVE-2023-33128", lastModified: "2024-11-21T08:04:56.780", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.3, impactScore: 5.9, source: "secure@microsoft.com", type: "Primary", }, ], }, published: "2023-06-14T00:15:11.910", references: [ { source: "secure@microsoft.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], sourceIdentifier: "secure@microsoft.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-416", }, ], source: "secure@microsoft.com", type: "Secondary", }, { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
msrc_cve-2023-33128
Vulnerability from csaf_microsoft
Notes
{ document: { aggregate_severity: { namespace: "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Public", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en-US", notes: [ { category: "general", text: "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle", title: "Additional Resources", }, { category: "legal_disclaimer", text: "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.", title: "Disclaimer", }, { category: "general", text: "Required. The vulnerability documented by this CVE requires customer action to resolve.", title: "Customer Action", }, ], publisher: { category: "vendor", contact_details: "secure@microsoft.com", name: "Microsoft Security Response Center", namespace: "https://msrc.microsoft.com", }, references: [ { category: "self", summary: "CVE-2023-33128 .NET and Visual Studio Remote Code Execution Vulnerability - HTML", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, { category: "self", summary: "CVE-2023-33128 .NET and Visual Studio Remote Code Execution Vulnerability - CSAF", url: "https://msrc.microsoft.com/csaf/2023/msrc_cve-2023-33128.json", }, { category: "external", summary: "Microsoft Exploitability Index", url: "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1", }, { category: "external", summary: "Microsoft Support Lifecycle", url: "https://support.microsoft.com/lifecycle", }, { category: "external", summary: "Common Vulnerability Scoring System", url: "https://www.first.org/cvss", }, ], title: ".NET and Visual Studio Remote Code Execution Vulnerability", tracking: { current_release_date: "2023-06-29T07:00:00.000Z", generator: { date: "2025-01-01T01:43:29.903Z", engine: { name: "MSRC Generator", version: "1.0", }, }, id: "msrc_CVE-2023-33128", initial_release_date: "2023-06-13T07:00:00.000Z", revision_history: [ { date: "2023-06-13T07:00:00.000Z", legacy_version: "1", number: "1", summary: "Information published.", }, { date: "2023-06-29T07:00:00.000Z", legacy_version: "2", number: "2", summary: "Revised the Security Updates table to include PowerShell 7.3 because this version of PowerShell 7 is affected by this vulnerability. See [https://github.com/PowerShell/Announcements/issues/47](https://github.com/PowerShell/Announcements/issues/47) for more information.", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { category: "product_version_range", name: "<6.0.18", product: { name: ".NET 6.0 <6.0.18", product_id: "6", }, }, { category: "product_version", name: "6.0.18", product: { name: ".NET 6.0 6.0.18", product_id: "12009", }, }, ], category: "product_name", name: ".NET 6.0", }, { branches: [ { category: "product_version_range", name: "<7.0.7", product: { name: ".NET 7.0 <7.0.7", product_id: "3", }, }, { category: "product_version", name: "7.0.7", product: { name: ".NET 7.0 7.0.7", product_id: "12130", }, }, ], category: "product_name", name: ".NET 7.0", }, { branches: [ { category: "product_version_range", name: "<17.0.22", product: { name: "Microsoft Visual Studio 2022 version 17.0 <17.0.22", product_id: "7", }, }, { category: "product_version", name: "17.0.22", product: { name: "Microsoft Visual Studio 2022 version 17.0 17.0.22", product_id: "11969", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", }, { branches: [ { category: "product_version_range", name: "<17.2.16", product: { name: "Microsoft Visual Studio 2022 version 17.2 <17.2.16", product_id: "5", }, }, { category: "product_version", name: "17.2.16", product: { name: "Microsoft Visual Studio 2022 version 17.2 17.2.16", product_id: "12051", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", }, { branches: [ { category: "product_version_range", name: "<17.4.8", product: { name: "Microsoft Visual Studio 2022 version 17.4 <17.4.8", product_id: "4", }, }, { category: "product_version", name: "17.4.8", product: { name: "Microsoft Visual Studio 2022 version 17.4 17.4.8", product_id: "12129", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", }, { branches: [ { category: "product_version_range", name: "<17.6.3", product: { name: "Microsoft Visual Studio 2022 version 17.6 <17.6.3", product_id: "1", }, }, { category: "product_version", name: "17.6.3", product: { name: "Microsoft Visual Studio 2022 version 17.6 17.6.3", product_id: "12187", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", }, { branches: [ { category: "product_version_range", name: "<7.3.5", product: { name: "PowerShell 7.3 <7.3.5", product_id: "2", }, }, { category: "product_version", name: "7.3.5", product: { name: "PowerShell 7.3 7.3.5", product_id: "12131", }, }, ], category: "product_name", name: "PowerShell 7.3", }, ], }, vulnerabilities: [ { cve: "CVE-2023-33128", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "general", text: "Microsoft", title: "Assigning CNA", }, { category: "faq", text: "The word Remote in the title refers to the location of the attacker. This type of exploit is sometimes referred to as Arbitrary Code Execution (ACE). The attack itself is carried out locally. This means an attacker or victim needs to execute code from the local machine to exploit the vulnerability.", title: "According to the CVSS metric, the attack vector is local (AV:L). Why does the CVE title indicate that this is a remote code execution?", }, { category: "faq", text: "An authorized attacker must send the user a malicious file and convince the user to open it.", title: "According to the CVSS metric, user interaction is required (UI:R) and privileges required is low (PR:L). What does that mean for this vulnerability?", }, { category: "faq", text: "Exploitation of this vulnerability requires that a user trigger the payload in the application.", title: "According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?", }, { category: "faq", text: "The attacker would have to be an authenticated user logged on to the vulnerable system to be able to exploit this vulnerability.", title: "According to the CVSS metric, the attack vector is local (AV:L). What does this mean for this vulnerability?", }, ], product_status: { fixed: [ "11969", "12009", "12051", "12129", "12130", "12131", "12187", ], known_affected: [ "1", "2", "3", "4", "5", "6", "7", ], }, references: [ { category: "self", summary: "CVE-2023-33128 .NET and Visual Studio Remote Code Execution Vulnerability - HTML", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, { category: "self", summary: "CVE-2023-33128 .NET and Visual Studio Remote Code Execution Vulnerability - CSAF", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", }, ], remediations: [ { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "6.0.18:Security Update:https://support.microsoft.com/help/5027797", product_ids: [ "6", ], url: "https://support.microsoft.com/help/5027797", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "7.0.7:Security Update:https://support.microsoft.com/help/5027798", product_ids: [ "3", ], url: "https://support.microsoft.com/help/5027798", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.0.22:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes-v17.0", product_ids: [ "7", ], url: "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes-v17.0", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.2.16:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "5", ], url: "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.4.8:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "4", ], url: "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.6.3:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "1", ], url: "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "7.3.5:Security Update:https://github.com/PowerShell/Announcements/issues/47", product_ids: [ "2", ], url: "https://github.com/PowerShell/Announcements/issues/47", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", environmentalsScore: 0, exploitCodeMaturity: "PROOF_OF_CONCEPT", integrityImpact: "HIGH", privilegesRequired: "LOW", remediationLevel: "OFFICIAL_FIX", reportConfidence: "CONFIRMED", scope: "UNCHANGED", temporalScore: 6.6, userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", "2", "3", "4", "5", "6", "7", ], }, ], threats: [ { category: "impact", details: "Remote Code Execution", }, { category: "exploit_status", details: "Exploited:No;Latest Software Release:Exploitation Less Likely", }, ], title: ".NET and Visual Studio Remote Code Execution Vulnerability", }, ], }
Log in or create an account to share your comment.
This schema specifies the format of a comment related to a security advisory.
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.