Action not permitted
Modal body text goes here.
CVE-2023-33128
Vulnerability from cvelistv5
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 | Patch, Vendor Advisory |
Vendor | Product | Version | |||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Microsoft | .NET 6.0 |
Version: 6.0.0 < 6.0.18 cpe:2.3:a:microsoft:.net:6.0.0:*:*:*:*:*:*:* |
||||||||||||||||||||||||
|
{ "containers": { "adp": [ { "metrics": [ { "other": { "content": { "id": "CVE-2023-33128", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "total" } ], "role": "CISA Coordinator", "timestamp": "2024-07-08T14:18:33.333686Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-07-08T14:18:51.143Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" }, { "providerMetadata": { "dateUpdated": "2024-08-02T15:39:35.239Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": ".NET and Visual Studio Remote Code Execution Vulnerability", "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "cpes": [ "cpe:2.3:a:microsoft:.net:6.0.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": ".NET 6.0", "vendor": "Microsoft", "versions": [ { "lessThan": "6.0.18", "status": "affected", "version": "6.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": ".NET 7.0", "vendor": "Microsoft", "versions": [ { "lessThan": "7.0.7", "status": "affected", "version": "7.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.0", "vendor": "Microsoft", "versions": [ { "lessThan": "17.0.22", "status": "affected", "version": "17.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.2:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.2", "vendor": "Microsoft", "versions": [ { "lessThan": "17.2.16", "status": "affected", "version": "17.2.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.4:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.4", "vendor": "Microsoft", "versions": [ { "lessThan": "17.4.8", "status": "affected", "version": "17.4.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.6", "vendor": "Microsoft", "versions": [ { "lessThan": "17.6.3", "status": "affected", "version": "17.6.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:powershell:7.3:-:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "PowerShell 7.3", "vendor": "Microsoft", "versions": [ { "lessThan": "7.3.5", "status": "affected", "version": "7.3.0", "versionType": "custom" } ] } ], "datePublic": "2023-06-13T07:00:00+00:00", "descriptions": [ { "lang": "en-US", "value": ".NET and Visual Studio Remote Code Execution Vulnerability" } ], "metrics": [ { "cvssV3_1": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en-US", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-416", "description": "CWE-416: Use After Free", "lang": "en-US", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-07-19T20:22:22.547Z", "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft" }, "references": [ { "name": ".NET and Visual Studio Remote Code Execution Vulnerability", "tags": [ "vendor-advisory" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128" } ], "title": ".NET and Visual Studio Remote Code Execution Vulnerability" } }, "cveMetadata": { "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2023-33128", "datePublished": "2023-06-13T23:26:22.949Z", "dateReserved": "2023-05-17T21:16:44.895Z", "dateUpdated": "2024-08-02T15:39:35.239Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2023-33128\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T00:15:11.910\",\"lastModified\":\"2024-11-21T08:04:56.780\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET and Visual Studio Remote Code Execution Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.3,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.18\",\"matchCriteriaId\":\"A00E1F46-D02A-42C8-9292-F38BE98DE1CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.7\",\"matchCriteriaId\":\"5FABF6D4-EA23-4234-90D3-0D9306A2994B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.0\",\"versionEndExcluding\":\"17.0.22\",\"matchCriteriaId\":\"2B1F98BC-0D82-4AEB-9E1E-D67325E99385\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.2\",\"versionEndExcluding\":\"17.2.16\",\"matchCriteriaId\":\"B6B0B496-BC41-4F9D-9A28-AE7664B5C77D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.4\",\"versionEndExcluding\":\"17.4.8\",\"matchCriteriaId\":\"BC861E65-1682-4E99-8A7B-F4A31DDC0198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.6\",\"versionEndExcluding\":\"17.6.3\",\"matchCriteriaId\":\"51DB90D6-C1C4-43B9-8B37-696CB361F37F\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}" } }
rhsa-2023_4449
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:4449", "url": "https://access.redhat.com/errata/RHSA-2023:4449" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security update", "tracking": { "current_release_date": "2024-11-22T23:50:50+00:00", "generator": { "date": "2024-11-22T23:50:50+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:4449", "initial_release_date": "2023-08-03T07:57:34+00:00", "revision_history": [ { "date": "2023-08-03T07:57:34+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-08-03T07:57:34+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:50:50+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product": { "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:9.0::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v.9.0)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:9.0::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.120-1.el9_0.src", "product": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src", "product_id": "dotnet6.0-0:6.0.120-1.el9_0.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el9_0.src", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el9_0.src", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)" }, "discovery_date": "2023-07-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2221854" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33170" }, { "category": "external", "summary": "RHBZ#2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33170", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170" }, { "category": "external", "summary": "https://devblogs.microsoft.com/dotnet/july-2023-updates/", "url": "https://devblogs.microsoft.com/dotnet/july-2023-updates/" }, { "category": "external", "summary": "https://github.com/advisories/GHSA-25c8-p796-jg6r", "url": "https://github.com/advisories/GHSA-25c8-p796-jg6r" }, { "category": "external", "summary": "https://github.com/dotnet/announcements/issues/264", "url": "https://github.com/dotnet/announcements/issues/264" }, { "category": "external", "summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170" } ], "release_date": "2023-07-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method" } ] }
rhsa-2023_3582
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3582", "url": "https://access.redhat.com/errata/RHSA-2023:3582" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T23:28:24+00:00", "generator": { "date": "2024-11-22T23:28:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:3582", "initial_release_date": "2023-06-14T08:41:36+00:00", "revision_history": [ { "date": "2023-06-14T08:41:36+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:41:36+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:28:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 8)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.118-1.el8_8.src", "product": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src", "product_id": "dotnet6.0-0:6.0.118-1.el8_8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el8_8.src", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el8_8.src", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3593
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3593", "url": "https://access.redhat.com/errata/RHSA-2023:3593" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json" } ], "title": "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T23:28:43+00:00", "generator": { "date": "2024-11-22T23:28:43+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:3593", "initial_release_date": "2023-06-14T10:02:32+00:00", "revision_history": [ { "date": "2023-06-14T10:02:32+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T10:02:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:28:43+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 8)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet7.0-0:7.0.107-1.el8_8.src", "product": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src", "product_id": "dotnet7.0-0:7.0.107-1.el8_8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el8_8.src", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el8_8.src", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-32032", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212615" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-32032" }, { "category": "external", "summary": "RHBZ#2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32032", "url": "https://www.cve.org/CVERecord?id=CVE-2023-32032" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3581
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3581", "url": "https://access.redhat.com/errata/RHSA-2023:3581" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T23:28:04+00:00", "generator": { "date": "2024-11-22T23:28:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:3581", "initial_release_date": "2023-06-14T08:03:19+00:00", "revision_history": [ { "date": "2023-06-14T08:03:19+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:03:19+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:28:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 9)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.118-1.el9_2.src", "product": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src", "product_id": "dotnet6.0-0:6.0.118-1.el9_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el9_2.src", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el9_2.src", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3592
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3592", "url": "https://access.redhat.com/errata/RHSA-2023:3592" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json" } ], "title": "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T23:28:33+00:00", "generator": { "date": "2024-11-22T23:28:33+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:3592", "initial_release_date": "2023-06-14T09:51:37+00:00", "revision_history": [ { "date": "2023-06-14T09:51:37+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T09:51:37+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:28:33+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 9)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet7.0-0:7.0.107-1.el9_2.src", "product": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src", "product_id": "dotnet7.0-0:7.0.107-1.el9_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el9_2.src", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el9_2.src", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-32032", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212615" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-32032" }, { "category": "external", "summary": "RHBZ#2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32032", "url": "https://www.cve.org/CVERecord?id=CVE-2023-32032" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3580
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3580", "url": "https://access.redhat.com/errata/RHSA-2023:3580" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T23:28:14+00:00", "generator": { "date": "2024-11-22T23:28:14+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:3580", "initial_release_date": "2023-06-14T08:54:51+00:00", "revision_history": [ { "date": "2023-06-14T08:54:51+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:54:51+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:28:14+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } }, { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } }, { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } } ], "category": "product_family", "name": ".NET Core on Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product_id": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_4448
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:4448", "url": "https://access.redhat.com/errata/RHSA-2023:4448" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security update", "tracking": { "current_release_date": "2024-11-22T23:50:41+00:00", "generator": { "date": "2024-11-22T23:50:41+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2023:4448", "initial_release_date": "2023-08-03T07:58:53+00:00", "revision_history": [ { "date": "2023-08-03T07:58:53+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-08-03T07:58:53+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T23:50:41+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product": { "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v.8.6)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.6::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.120-1.el8_6.src", "product": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src", "product_id": "dotnet6.0-0:6.0.120-1.el8_6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el8_6.src", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el8_6.src", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)" }, "discovery_date": "2023-07-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2221854" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33170" }, { "category": "external", "summary": "RHBZ#2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33170", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170" }, { "category": "external", "summary": "https://devblogs.microsoft.com/dotnet/july-2023-updates/", "url": "https://devblogs.microsoft.com/dotnet/july-2023-updates/" }, { "category": "external", "summary": "https://github.com/advisories/GHSA-25c8-p796-jg6r", "url": "https://github.com/advisories/GHSA-25c8-p796-jg6r" }, { "category": "external", "summary": "https://github.com/dotnet/announcements/issues/264", "url": "https://github.com/dotnet/announcements/issues/264" }, { "category": "external", "summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170" } ], "release_date": "2023-07-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method" } ] }
icsa-23-320-12
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens ProductCERT", "summary": "reporting these vulnerabilities to CISA." } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "other", "text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.", "title": "Advisory Conversion Disclaimer" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", "title": "Recommended Practices" }, { "category": "general", "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", "title": "Recommended Practices" }, { "category": "general", "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", "title": "Recommended Practices" }, { "category": "general", "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" } ], "publisher": { "category": "other", "contact_details": "central@cisa.dhs.gov", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-150063.html" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt" }, { "category": "self", "summary": "ICS Advisory ICSA-23-320-12 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json" }, { "category": "self", "summary": "ICS Advisory ICSA-23-320-12 - Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/topics/industrial-control-systems" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Siemens PNI", "tracking": { "current_release_date": "2023-11-14T00:00:00Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1" } }, "id": "ICSA-23-320-12", "initial_release_date": "2023-11-14T00:00:00Z", "revision_history": [ { "date": "2023-11-14T00:00:00Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV2.0", "product": { "name": "SINEC PNI", "product_id": "1" } } ], "category": "product_name", "name": "SINEC PNI" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-30184", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Information Disclosure Vulnerability.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-30184" }, { "cve": "CVE-2022-37434", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-37434" }, { "cve": "CVE-2022-41032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "NuGet Client Elevation of Privilege Vulnerability.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-41032" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33135" } ] }
icsa-24-165-04
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens ProductCERT", "summary": "reporting these vulnerabilities to CISA." } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "other", "text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.", "title": "Advisory Conversion Disclaimer" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", "title": "Recommended Practices" }, { "category": "general", "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", "title": "Recommended Practices" }, { "category": "general", "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", "title": "Recommended Practices" }, { "category": "general", "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" } ], "publisher": { "category": "other", "contact_details": "central@cisa.dhs.gov", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-341067.html" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt" }, { "category": "self", "summary": "ICS Advisory ICSA-24-165-04 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json" }, { "category": "self", "summary": "ICS Advisory ICSA-24-165-04 - Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/topics/industrial-control-systems" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Siemens ST7 ScadaConnect", "tracking": { "current_release_date": "2024-06-11T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1" } }, "id": "ICSA-24-165-04", "initial_release_date": "2024-06-11T00:00:00.000000Z", "revision_history": [ { "date": "2024-06-11T00:00:00.000000Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV1.1", "product": { "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", "product_id": "CSAFPID-0001", "product_identification_helper": { "model_numbers": [ "6NH7997-5DA10-0AA0" ] } } } ], "category": "product_name", "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-40303", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-40303" }, { "cve": "CVE-2022-40304", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-40304" }, { "cve": "CVE-2023-0464", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0464" }, { "cve": "CVE-2023-0465", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0465" }, { "cve": "CVE-2023-0466", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0466" }, { "cve": "CVE-2023-3446", "cwe": { "id": "CWE-1333", "name": "Inefficient Regular Expression Complexity" }, "notes": [ { "category": "summary", "text": "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus (\u0027p\u0027 parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the \u0027-check\u0027 option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-3446" }, { "cve": "CVE-2023-5678", "cwe": { "id": "CWE-754", "name": "Improper Check for Unusual or Exceptional Conditions" }, "notes": [ { "category": "summary", "text": "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn\u0027t make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn\u0027t check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-5678" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-28484", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-28484" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29469", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the \u0027\\0\u0027 value).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-29469" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33127", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33127" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33170" }, { "cve": "CVE-2023-35390", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-35390" }, { "cve": "CVE-2023-35391", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-35391" }, { "cve": "CVE-2023-36038", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36038" }, { "cve": "CVE-2023-36049", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36049" }, { "cve": "CVE-2023-36435", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36435" }, { "cve": "CVE-2023-36558", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core - Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36558" }, { "cve": "CVE-2023-36792", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36792" }, { "cve": "CVE-2023-36793", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36793" }, { "cve": "CVE-2023-36794", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36794" }, { "cve": "CVE-2023-36796", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36796" }, { "cve": "CVE-2023-36799", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36799" }, { "cve": "CVE-2023-38171", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38171" }, { "cve": "CVE-2023-38178", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38178" }, { "cve": "CVE-2023-38180", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38180" }, { "cve": "CVE-2023-39615", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor\u0027s position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-39615" }, { "cve": "CVE-2023-44487", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-44487" } ] }
ghsa-x469-cv7m-77r9
Vulnerability from github
Microsoft Security Advisory CVE-2023-33128: .NET Remote Code Execution Vulnerability
Executive summary
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
A vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing.
Announcement
Announcement for this issue can be found at https://github.com/dotnet/announcements/issues/253
Mitigation factors
Microsoft has not identified any mitigating factors for this vulnerability.
Affected software
- Any .NET 7.0.1xx SDK 7.0.106 or earlier.
- Any .NET 7.0.3xx SDK 7.0.303 or earlier.
If your application uses the following package versions, ensure you update to the latest version of .NET.
.NET 7
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.NetCore.App.Runtime.linux-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x64 | >= 7.0.0, <= 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x86 | >= 7.0.0, <= 7.0.5 | 7.0.7
Advisory FAQ
How do I know if I am affected?
If you have a runtime or SDK with a version listed, or an affected package listed in affected software, you're exposed to the vulnerability.
How do I fix the issue?
- To fix the issue please install the latest version of .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.
- If you are using one of the affected packages, please update to the patched version listed above.
- If you are a library author and have used one of the affected versions listed above, please update, recompile, and redistribute your libraries.
- If you have .NET 7.0 or greater installed, you can list the versions you have installed by running the
dotnet --info
command. You will see output like the following;
``` .NET Core SDK (reflecting any global.json):
Version: 6.0.300 Commit: 8473146e7d
Runtime Environment:
OS Name: Windows OS Version: 10.0.18363 OS Platform: Windows RID: win10-x64 Base Path: C:\Program Files\dotnet\sdk\6.0.300\
Host (useful for support):
Version: 6.0.5 Commit: 8473146e7d
.NET Core SDKs installed:
6.0.300 [C:\Program Files\dotnet\sdk]
.NET Core runtimes installed:
Microsoft.AspNetCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.AspNetCore.App] Microsoft.NETCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.NETCore.App] Microsoft.WindowsDesktop.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App]
To install additional .NET Core runtimes or SDKs: https://aka.ms/dotnet-download ```
- If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.
.NET 7.0 updates are also available from Microsoft Update. To access this either type "Check for updates" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.
Once you have installed the updated runtime or SDK, restart your apps for the update to take effect.
Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.
Other Information
Reporting Security Issues
If you have found a potential security issue in .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at https://aka.ms/corebounty.
Support
You can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
External Links
Revisions
V1.0 (June 13, 2023): Advisory published.
Version 1.0
Last Updated 2023-06-13
{ "affected": [ { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x86" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] } ], "aliases": [ "CVE-2023-33128" ], "database_specific": { "cwe_ids": [ "CWE-416" ], "github_reviewed": true, "github_reviewed_at": "2023-06-14T17:17:02Z", "nvd_published_at": "2023-06-14T00:15:11Z", "severity": "HIGH" }, "details": "# Microsoft Security Advisory CVE-2023-33128: .NET Remote Code Execution Vulnerability\n\n## \u003ca name=\"executive-summary\"\u003e\u003c/a\u003eExecutive summary\n\nMicrosoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.\n\nA vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing.\n\n## Announcement\n\nAnnouncement for this issue can be found at https://github.com/dotnet/announcements/issues/253\n\n### \u003ca name=\"mitigation-factors\"\u003e\u003c/a\u003eMitigation factors\n\nMicrosoft has not identified any mitigating factors for this vulnerability.\n\n## \u003ca name=\"affected-software\"\u003e\u003c/a\u003eAffected software\n\n* Any .NET 7.0.1xx SDK 7.0.106 or earlier.\n* Any .NET 7.0.3xx SDK 7.0.303 or earlier.\n\nIf your application uses the following package versions, ensure you update to the latest version of .NET.\n\n### \u003ca name=\".NET 7\"\u003e\u003c/a\u003e.NET 7\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | \u003e= 7.0.0, \u003c= 7.0.5 | 7.0.7\n\n## Advisory FAQ\n\n### \u003ca name=\"how-affected\"\u003e\u003c/a\u003eHow do I know if I am affected?\n\nIf you have a runtime or SDK with a version listed, or an affected package listed in [affected software](#affected-software), you\u0027re exposed to the vulnerability.\n\n### \u003ca name=\"how-fix\"\u003e\u003c/a\u003eHow do I fix the issue?\n\n* To fix the issue please install the latest version of .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.\n* If you are using one of the affected packages, please update to the patched version listed above.\n* If you are a library author and have used one of the affected versions listed above, please update, recompile, and redistribute your libraries.\n* If you have .NET 7.0 or greater installed, you can list the versions you have installed by running the `dotnet --info` command. You will see output like the following;\n\n```\n.NET Core SDK (reflecting any global.json):\n\n Version: 6.0.300\n Commit: 8473146e7d\n\nRuntime Environment:\n\n OS Name: Windows\n OS Version: 10.0.18363\n OS Platform: Windows\n RID: win10-x64\n Base Path: C:\\Program Files\\dotnet\\sdk\\6.0.300\\\n\nHost (useful for support):\n\n Version: 6.0.5\n Commit: 8473146e7d\n\n.NET Core SDKs installed:\n\n 6.0.300 [C:\\Program Files\\dotnet\\sdk]\n\n.NET Core runtimes installed:\n\n Microsoft.AspNetCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.AspNetCore.App]\n Microsoft.NETCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.NETCore.App]\n Microsoft.WindowsDesktop.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.WindowsDesktop.App]\n\nTo install additional .NET Core runtimes or SDKs:\n https://aka.ms/dotnet-download\n```\n\n* If you\u0027re using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.\n\n.NET 7.0 updates are also available from Microsoft Update. To access this either type \"Check for updates\" in your Windows search, or open Settings, choose Update \u0026 Security and then click Check for Updates.\n\nOnce you have installed the updated runtime or SDK, restart your apps for the update to take effect.\n\nAdditionally, if you\u0027ve deployed [self-contained applications](https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd) targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.\n\n## Other Information\n\n### Reporting Security Issues\n\nIf you have found a potential security issue in .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core \u0026 .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at \u003chttps://aka.ms/corebounty\u003e.\n\n### Support\n\nYou can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.\n\n### Disclaimer\n\nThe information provided in this advisory is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\n\n### External Links\n\n[CVE-2023-33128]( https://www.cve.org/CVERecord?id=2023-33128)\n\n### Revisions\n\nV1.0 (June 13, 2023): Advisory published.\n\n_Version 1.0_\n\n_Last Updated 2023-06-13_", "id": "GHSA-x469-cv7m-77r9", "modified": "2024-07-30T21:12:55Z", "published": "2023-06-14T17:17:02Z", "references": [ { "type": "WEB", "url": "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "type": "WEB", "url": "https://github.com/dotnet/announcements/issues/253" }, { "type": "PACKAGE", "url": "https://github.com/dotnet/sdk" }, { "type": "WEB", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ], "summary": ".NET Remote Code Execution Vulnerability" }
gsd-2023-33128
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2023-33128", "id": "GSD-2023-33128" }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2023-33128" ], "details": ".NET and Visual Studio Remote Code Execution Vulnerability", "id": "GSD-2023-33128", "modified": "2023-12-13T01:20:37.717951Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secure@microsoft.com", "ID": "CVE-2023-33128", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": ".NET 6.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "6.0.0", "version_value": "6.0.18" } ] } }, { "product_name": ".NET 7.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.0.0", "version_value": "7.0.7" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.0.0", "version_value": "17.0.22" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.2.0", "version_value": "17.2.16" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.4", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.4.0", "version_value": "17.4.8" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.6", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.6.0", "version_value": "17.6.3" } ] } }, { "product_name": "PowerShell 7.3", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.3.0", "version_value": "7.3.5" } ] } } ] }, "vendor_name": "Microsoft" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": ".NET and Visual Studio Remote Code Execution Vulnerability" } ] }, "impact": { "cvss": [ { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote Code Execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "refsource": "MISC", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128" } ] } }, "gitlab.com": { "advisories": [ { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-arm", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "58e9a58f-9e3e-44af-85db-28124c4eb729" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "f862d735-ffaf-4cc9-a4f8-1a0f6d1c0c93" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "f7aea347-dece-422d-b2ac-3ef1ad9e0bda" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "3a13e696-1519-4477-89f6-322cbbc0809e" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-x64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "0ac66544-9bb8-4556-ab7a-918a6e3abcee" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-x64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "e2e58c5e-7ef3-4a4d-a6bc-4988530cf50e" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.osx-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "b515d7ea-604b-4234-b834-24409361e27c" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.osx-x64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "9a570a85-2e31-47b8-bcbd-8a2e1ad126fc" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-arm", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "31c7fbd7-1bba-4e35-92ed-02a9cbce9852" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "96cdeb80-6846-4362-84c8-fc1226846827" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-x64", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "38e3199b-6988-4f77-8178-b41a8923429b" }, { "affected_range": "[7.0.0,7.0.5]", "affected_versions": "All versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET and Visual Studio Remote Code Execution Vulnerability", "fixed_versions": [ "7.0.7" ], "identifier": "CVE-2023-33128", "identifiers": [ "GHSA-x469-cv7m-77r9", "CVE-2023-33128" ], "not_impacted": "All versions before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-x86", "pubdate": "2023-06-14", "solution": "Upgrade to version 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/sdk/security/advisories/GHSA-x469-cv7m-77r9", "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "https://github.com/dotnet/announcements/issues/253", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "https://github.com/advisories/GHSA-x469-cv7m-77r9" ], "uuid": "b1c9fb76-abe3-4652-ad1a-fec4b1c23d0b" } ] }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "17.0.22", "versionStartIncluding": "17.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "17.2.16", "versionStartIncluding": "17.2", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "17.4.8", "versionStartIncluding": "17.4", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "17.6.3", "versionStartIncluding": "17.6", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "6.0.18", "versionStartIncluding": "6.0.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.0.7", "versionStartIncluding": "7.0.0", "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secure@microsoft.com", "ID": "CVE-2023-33128" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": ".NET and Visual Studio Remote Code Execution Vulnerability" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128", "refsource": "MISC", "tags": [ "Patch", "Vendor Advisory" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128" } ] } }, "impact": { "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "exploitabilityScore": 1.3, "impactScore": 5.9 } }, "lastModifiedDate": "2023-06-21T19:48Z", "publishedDate": "2023-06-14T00:15Z" } } }
ssa-341067
Vulnerability from csaf_siemens
Notes
{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)", "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "productcert@siemens.com", "name": "Siemens ProductCERT", "namespace": "https://www.siemens.com" }, "references": [ { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-341067.html" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt" } ], "title": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", "tracking": { "current_release_date": "2024-06-11T00:00:00Z", "generator": { "engine": { "name": "Siemens ProductCERT CSAF Generator", "version": "1" } }, "id": "SSA-341067", "initial_release_date": "2024-06-11T00:00:00Z", "revision_history": [ { "date": "2024-06-11T00:00:00Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "interim", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV1.1", "product": { "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", "product_id": "1", "product_identification_helper": { "model_numbers": [ "6NH7997-5DA10-0AA0" ] } } } ], "category": "product_name", "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-40303", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-40303" }, { "cve": "CVE-2022-40304", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-40304" }, { "cve": "CVE-2023-0464", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0464" }, { "cve": "CVE-2023-0465", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0465" }, { "cve": "CVE-2023-0466", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0466" }, { "cve": "CVE-2023-3446", "cwe": { "id": "CWE-1333", "name": "Inefficient Regular Expression Complexity" }, "notes": [ { "category": "summary", "text": "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus (\u0027p\u0027 parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the \u0027-check\u0027 option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-3446" }, { "cve": "CVE-2023-5678", "cwe": { "id": "CWE-754", "name": "Improper Check for Unusual or Exceptional Conditions" }, "notes": [ { "category": "summary", "text": "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn\u0027t make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn\u0027t check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-5678" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-28484", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28484" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29469", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the \u0027\\0\u0027 value).", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29469" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33127", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33127" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33170" }, { "cve": "CVE-2023-35390", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-35390" }, { "cve": "CVE-2023-35391", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-35391" }, { "cve": "CVE-2023-36038", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36038" }, { "cve": "CVE-2023-36049", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36049" }, { "cve": "CVE-2023-36435", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36435" }, { "cve": "CVE-2023-36558", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core - Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36558" }, { "cve": "CVE-2023-36792", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36792" }, { "cve": "CVE-2023-36793", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36793" }, { "cve": "CVE-2023-36794", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36794" }, { "cve": "CVE-2023-36796", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36796" }, { "cve": "CVE-2023-36799", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36799" }, { "cve": "CVE-2023-38171", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38171" }, { "cve": "CVE-2023-38178", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38178" }, { "cve": "CVE-2023-38180", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38180" }, { "cve": "CVE-2023-39615", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor\u0027s position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-39615" }, { "cve": "CVE-2023-44487", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-44487" } ] }
wid-sec-w-2023-1446
Vulnerability from csaf_certbund
Notes
{ "document": { "aggregate_severity": { "text": "hoch" }, "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "de-DE", "notes": [ { "category": "legal_disclaimer", "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen." }, { "category": "description", "text": "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausf\u00fchrung von Softwareanwendungen und Webdiensten erm\u00f6glicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. f\u00fcr die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform f\u00fcr kollaborative Softwareprojekte.\r\nNuGet ist ein Programm f\u00fcr die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung f\u00fcr Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", "title": "Produktbeschreibung" }, { "category": "summary", "text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren.", "title": "Angriff" }, { "category": "general", "text": "- Linux\n- MacOS X\n- Windows", "title": "Betroffene Betriebssysteme" } ], "publisher": { "category": "other", "contact_details": "csaf-provider@cert-bund.de", "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik", "namespace": "https://www.bsi.bund.de" }, "references": [ { "category": "self", "summary": "WID-SEC-W-2023-1446 - CSAF Version", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json" }, { "category": "self", "summary": "WID-SEC-2023-1446 - Portal Version", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446" }, { "category": "external", "summary": "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", "url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", "url": "https://access.redhat.com/errata/RHSA-2023:4449" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", "url": "https://access.redhat.com/errata/RHSA-2023:4448" }, { "category": "external", "summary": "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", "url": "https://ubuntu.com/security/notices/USN-6161-2" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", "url": "https://linux.oracle.com/errata/ELSA-2023-3592.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", "url": "https://linux.oracle.com/errata/ELSA-2023-3593.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", "url": "https://linux.oracle.com/errata/ELSA-2023-3582.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", "url": "http://linux.oracle.com/errata/ELSA-2023-3581.html" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3593" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3581" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3580" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3582" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3592" }, { "category": "external", "summary": "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", "url": "https://ubuntu.com/security/notices/USN-6161-1" }, { "category": "external", "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2023-06-13", "url": "https://msrc.microsoft.com/update-guide" } ], "source_lang": "en-US", "title": "Microsoft Developer Tools: Mehrere Schwachstellen", "tracking": { "current_release_date": "2023-09-25T22:00:00.000+00:00", "generator": { "date": "2024-08-15T17:52:25.204+00:00", "engine": { "name": "BSI-WID", "version": "1.3.5" } }, "id": "WID-SEC-W-2023-1446", "initial_release_date": "2023-06-13T22:00:00.000+00:00", "revision_history": [ { "date": "2023-06-13T22:00:00.000+00:00", "number": "1", "summary": "Initiale Fassung" }, { "date": "2023-06-14T22:00:00.000+00:00", "number": "2", "summary": "Neue Updates von Red Hat aufgenommen" }, { "date": "2023-06-15T22:00:00.000+00:00", "number": "3", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-06-18T22:00:00.000+00:00", "number": "4", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-06-25T22:00:00.000+00:00", "number": "5", "summary": "Neue Updates von Ubuntu aufgenommen" }, { "date": "2023-08-02T22:00:00.000+00:00", "number": "6", "summary": "Neue Updates von Red Hat aufgenommen" }, { "date": "2023-09-25T22:00:00.000+00:00", "number": "7", "summary": "Neue Updates von HITACHI aufgenommen" } ], "status": "final", "version": "7" } }, "product_tree": { "branches": [ { "branches": [ { "category": "product_name", "name": "Hitachi Storage Virtual Storage Platform", "product": { "name": "Hitachi Storage Virtual Storage Platform", "product_id": "T020487", "product_identification_helper": { "cpe": "cpe:/h:hitachi:storage:virtual_storage_platform" } } } ], "category": "vendor", "name": "Hitachi" }, { "branches": [ { "branches": [ { "category": "product_name", "name": "Microsoft .NET Framework 4.8.1", "product": { "name": "Microsoft .NET Framework 4.8.1", "product_id": "1273212", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.8.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.5.1", "product": { "name": "Microsoft .NET Framework 3.5.1", "product_id": "130815", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.5.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.6.2", "product": { "name": "Microsoft .NET Framework 4.6.2", "product_id": "336763", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.6.2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7", "product": { "name": "Microsoft .NET Framework 4.7", "product_id": "432554", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7.1", "product": { "name": "Microsoft .NET Framework 4.7.1", "product_id": "432555", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7.2", "product": { "name": "Microsoft .NET Framework 4.7.2", "product_id": "432556", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7.2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.8", "product": { "name": "Microsoft .NET Framework 4.8", "product_id": "432557", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.8" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.5", "product": { "name": "Microsoft .NET Framework 3.5", "product_id": "834793", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.5:-" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 2.0 SP2", "product": { "name": "Microsoft .NET Framework 2.0 SP2", "product_id": "T021515", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:2.0_sp2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.0 SP2", "product": { "name": "Microsoft .NET Framework 3.0 SP2", "product_id": "T024564", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.0_sp2" } } } ], "category": "product_name", "name": ".NET Framework" }, { "category": "product_name", "name": "Microsoft Azure DevOps Server 2020.1.2", "product": { "name": "Microsoft Azure DevOps Server 2020.1.2", "product_id": "1342801", "product_identification_helper": { "cpe": "cpe:/o:microsoft:azure_devops_server:2020.1.2:-" } } }, { "branches": [ { "category": "product_name", "name": "Microsoft NuGet 6.0.4", "product": { "name": "Microsoft NuGet 6.0.4", "product_id": "T028096", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.0.4" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.2.3", "product": { "name": "Microsoft NuGet 6.2.3", "product_id": "T028097", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.2.3" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.3.2", "product": { "name": "Microsoft NuGet 6.3.2", "product_id": "T028098", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.3.2" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.4.1", "product": { "name": "Microsoft NuGet 6.4.1", "product_id": "T028099", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.4.1" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.5.0", "product": { "name": "Microsoft NuGet 6.5.0", "product_id": "T028100", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.5.0" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.6.0", "product": { "name": "Microsoft NuGet 6.6.0", "product_id": "T028101", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.6.0" } } } ], "category": "product_name", "name": "NuGet" }, { "category": "product_name", "name": "Microsoft Visual Studio 2013 Update 5", "product": { "name": "Microsoft Visual Studio 2013 Update 5", "product_id": "T014512", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2013:update_5" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2015 Update 3", "product": { "name": "Microsoft Visual Studio 2015 Update 3", "product_id": "T014511", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2015:update_3" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2017 version 15.9", "product": { "name": "Microsoft Visual Studio 2017 version 15.9", "product_id": "T015502", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2017:version_15.9" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2019 version 16.11", "product": { "name": "Microsoft Visual Studio 2019 version 16.11", "product_id": "T024563", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2019:version_16.11" } } }, { "branches": [ { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.0", "product": { "name": "Microsoft Visual Studio 2022 version 17.0", "product_id": "T026754", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.0" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.2", "product": { "name": "Microsoft Visual Studio 2022 version 17.2", "product_id": "T028102", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.2" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.4", "product": { "name": "Microsoft Visual Studio 2022 version 17.4", "product_id": "T028103", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.4" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.5", "product": { "name": "Microsoft Visual Studio 2022 version 17.5", "product_id": "T028104", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.5" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.6", "product": { "name": "Microsoft Visual Studio 2022 version 17.6", "product_id": "T028105", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.6" } } } ], "category": "product_name", "name": "Visual Studio 2022" }, { "category": "product_name", "name": "Microsoft Visual Studio Code", "product": { "name": "Microsoft Visual Studio Code", "product_id": "699261", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_code:-" } } } ], "category": "vendor", "name": "Microsoft" }, { "branches": [ { "category": "product_name", "name": "Oracle Linux", "product": { "name": "Oracle Linux", "product_id": "T004914", "product_identification_helper": { "cpe": "cpe:/o:oracle:linux:-" } } } ], "category": "vendor", "name": "Oracle" }, { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux", "product": { "name": "Red Hat Enterprise Linux", "product_id": "67646", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "category": "product_name", "name": "Ubuntu Linux", "product": { "name": "Ubuntu Linux", "product_id": "T000126", "product_identification_helper": { "cpe": "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category": "vendor", "name": "Ubuntu" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-33144", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33144" }, { "cve": "CVE-2023-33141", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33141" }, { "cve": "CVE-2023-33139", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33139" }, { "cve": "CVE-2023-33135", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33128", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33126", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-33126" }, { "cve": "CVE-2023-32032", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-32032" }, { "cve": "CVE-2023-32030", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-32030" }, { "cve": "CVE-2023-29353", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29353" }, { "cve": "CVE-2023-29337", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29337" }, { "cve": "CVE-2023-29331", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29326", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29326" }, { "cve": "CVE-2023-29012", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29012" }, { "cve": "CVE-2023-29011", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29011" }, { "cve": "CVE-2023-29007", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-29007" }, { "cve": "CVE-2023-27911", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-27911" }, { "cve": "CVE-2023-27910", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-27910" }, { "cve": "CVE-2023-27909", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-27909" }, { "cve": "CVE-2023-25815", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-25815" }, { "cve": "CVE-2023-25652", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-25652" }, { "cve": "CVE-2023-24936", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-24936" }, { "cve": "CVE-2023-24897", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24895", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-24895" }, { "cve": "CVE-2023-21569", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-21569" }, { "cve": "CVE-2023-21565", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00.000+00:00", "title": "CVE-2023-21565" } ] }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.