Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-21319 (GCVE-0-2024-21319)
Vulnerability from cvelistv5
Published
2024-01-09 18:59
Modified
2025-06-03 14:29
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-20 - Improper Input Validation
Summary
Microsoft Identity Denial of service vulnerability
References
| ► | URL | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ► | Microsoft | .NET 6.0 |
Version: 6.0.0 < 6.0.26 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:20:39.921Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "Microsoft Identity Denial of service vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-21319",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-08T15:56:18.714850Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-06-03T14:29:52.502Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"platforms": [
"Unknown"
],
"product": ".NET 6.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "6.0.26",
"status": "affected",
"version": "6.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Visual Studio 2022 version 17.2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "17.2.23",
"status": "affected",
"version": "17.2.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Visual Studio 2022 version 17.6",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "17.6.11",
"status": "affected",
"version": "17.6.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Visual Studio 2022 version 17.4",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "17.4.15",
"status": "affected",
"version": "17.4.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Visual Studio 2022 version 17.8",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "17.8.4",
"status": "affected",
"version": "17.8.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": ".NET 7.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "7.0.15",
"status": "affected",
"version": "7.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": ".NET 8.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "8.0.1",
"status": "affected",
"version": "8.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v6.0.0 forNuget",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "6.34.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v7.0.0 for Nuget",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "7.1.2",
"status": "affected",
"version": "7.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v6.0.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "6.34.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v5.0.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "5.7.0",
"status": "affected",
"version": "5.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v7.0.0",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "7.1.2",
"status": "affected",
"version": "7.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"Unknown"
],
"product": "Microsoft Identity Model v5.0.0 for Nuget",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "5.7.0",
"status": "affected",
"version": "5.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.0.26",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"versionEndExcluding": "17.2.23",
"versionStartIncluding": "17.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*",
"versionEndExcluding": "17.6.11",
"versionStartIncluding": "17.6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"versionEndExcluding": "17.4.15",
"versionStartIncluding": "17.4.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*",
"versionEndExcluding": "17.8.4",
"versionStartIncluding": "17.8.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.0.15",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"versionEndExcluding": "8.0.1",
"versionStartIncluding": "8.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.34.0",
"versionStartIncluding": "6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1.2",
"versionStartIncluding": "7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.34.0",
"versionStartIncluding": "6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1.2",
"versionStartIncluding": "7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2024-01-09T08:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "Microsoft Identity Denial of service vulnerability"
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20: Improper Input Validation",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-03T01:46:56.518Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Identity Denial of service vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
}
],
"title": "Microsoft Identity Denial of service vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2024-21319",
"datePublished": "2024-01-09T18:59:01.270Z",
"dateReserved": "2023-12-08T22:45:19.367Z",
"dateUpdated": "2025-06-03T14:29:52.502Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-21319\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2024-01-09T19:15:12.070\",\"lastModified\":\"2024-11-21T08:54:06.097\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Microsoft Identity Denial of service vulnerability\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de denegaci\u00f3n de servicio de identidad de Microsoft\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":6.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.3,\"impactScore\":4.0}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.26\",\"matchCriteriaId\":\"498DF6C9-EC7C-4A4F-A188-B22E82FD6540\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.15\",\"matchCriteriaId\":\"3CE00AC7-D405-4567-8CB1-C3ED7E2925C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndExcluding\":\"8.0.1\",\"matchCriteriaId\":\"8583992E-20C5-4437-ACFE-22FEBD539E4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.7.0\",\"matchCriteriaId\":\"F39C475D-FDCE-4DE1-B936-01D268FD7645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.34.0\",\"matchCriteriaId\":\"A286ABF0-E7B7-44E0-9EF1-0226BDD5338A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.1.2\",\"matchCriteriaId\":\"B12074D2-B6C2-4797-BCE8-27A5E6314FB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.2.0\",\"versionEndExcluding\":\"17.2.23\",\"matchCriteriaId\":\"42B33777-27CB-45CC-A95A-3F4369DBB31D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.4.0\",\"versionEndExcluding\":\"17.4.15\",\"matchCriteriaId\":\"E578915C-4563-4767-A1F9-7C0ADF58BDA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.6.0\",\"versionEndExcluding\":\"17.6.11\",\"matchCriteriaId\":\"AB1E1DB4-BE9A-48E9-808D-E239CFDB26BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.8.0\",\"versionEndExcluding\":\"17.8.4\",\"matchCriteriaId\":\"1A6D3ECE-ED4D-4778-900F-4D4E1D05F00E\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"title\": \"Microsoft Identity Denial of service vulnerability\", \"datePublic\": \"2024-01-09T08:00:00.000Z\", \"cpeApplicability\": [{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0.0\", \"versionEndExcluding\": \"6.0.26\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.2.0\", \"versionEndExcluding\": \"17.2.23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.6.0\", \"versionEndExcluding\": \"17.6.11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.4.0\", \"versionEndExcluding\": \"17.4.15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.8.0\", \"versionEndExcluding\": \"17.8.4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.0.0\", \"versionEndExcluding\": \"7.0.15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.0\", \"versionEndExcluding\": \"8.0.1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0\", \"versionEndExcluding\": \"6.34.0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.0\", \"versionEndExcluding\": \"7.1.2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0\", \"versionEndExcluding\": \"6.34.0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.0\", \"versionEndExcluding\": \"5.7.0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.0\", \"versionEndExcluding\": \"7.1.2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:identitymodel_for_nuget:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.0\", \"versionEndExcluding\": \"5.7.0\"}]}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \".NET 6.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"6.0.0\", \"lessThan\": \"6.0.26\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.2\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"17.2.0\", \"lessThan\": \"17.2.23\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.6\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"17.6.0\", \"lessThan\": \"17.6.11\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.4\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"17.4.0\", \"lessThan\": \"17.4.15\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Visual Studio 2022 version 17.8\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"17.8.0\", \"lessThan\": \"17.8.4\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \".NET 7.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"7.0.0\", \"lessThan\": \"7.0.15\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \".NET 8.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"8.0\", \"lessThan\": \"8.0.1\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v6.0.0 forNuget\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"6.0\", \"lessThan\": \"6.34.0\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v7.0.0 for Nuget\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"7.0\", \"lessThan\": \"7.1.2\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v6.0.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"6.0\", \"lessThan\": \"6.34.0\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v5.0.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"5.0\", \"lessThan\": \"5.7.0\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v7.0.0\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"7.0\", \"lessThan\": \"7.1.2\", \"versionType\": \"custom\", \"status\": \"affected\"}]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Identity Model v5.0.0 for Nuget\", \"platforms\": [\"Unknown\"], \"versions\": [{\"version\": \"5.0\", \"lessThan\": \"5.7.0\", \"versionType\": \"custom\", \"status\": \"affected\"}]}], \"descriptions\": [{\"value\": \"Microsoft Identity Denial of service vulnerability\", \"lang\": \"en-US\"}], \"problemTypes\": [{\"descriptions\": [{\"description\": \"CWE-20: Improper Input Validation\", \"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-20\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-05-03T01:46:56.518Z\"}, \"references\": [{\"name\": \"Microsoft Identity Denial of service vulnerability\", \"tags\": [\"vendor-advisory\"], \"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319\"}], \"metrics\": [{\"format\": \"CVSS\", \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}], \"cvssV3_1\": {\"version\": \"3.1\", \"baseSeverity\": \"MEDIUM\", \"baseScore\": 6.8, \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C\"}}]}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T22:20:39.921Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"name\": \"Microsoft Identity Denial of service vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"], \"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319\"}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-21319\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-08T15:56:18.714850Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-08T15:56:20.267Z\"}}]}",
"cveMetadata": "{\"cveId\": \"CVE-2024-21319\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"microsoft\", \"dateReserved\": \"2023-12-08T22:45:19.367Z\", \"datePublished\": \"2024-01-09T18:59:01.270Z\", \"dateUpdated\": \"2025-06-03T14:29:52.502Z\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
rhsa-2024:0158
Vulnerability from csaf_redhat
Published
2024-01-10 18:38
Modified
2025-03-03 16:55
Summary
Red Hat Security Advisory: .NET 6.0 security update
Notes
Topic
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0158",
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0158.json"
}
],
"title": "Red Hat Security Advisory: .NET 6.0 security update",
"tracking": {
"current_release_date": "2025-03-03T16:55:42+00:00",
"generator": {
"date": "2025-03-03T16:55:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.3.1"
}
},
"id": "RHSA-2024:0158",
"initial_release_date": "2024-01-10T18:38:00+00:00",
"revision_history": [
{
"date": "2024-01-10T18:38:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T18:38:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-03-03T16:55:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el8_9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el8_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el8_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet6.0-0:6.0.126-1.el8_9.src",
"product": {
"name": "dotnet6.0-0:6.0.126-1.el8_9.src",
"product_id": "dotnet6.0-0:6.0.126-1.el8_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0@6.0.126-1.el8_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-0:6.0.126-1.el8_9.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src"
},
"product_reference": "dotnet6.0-0:6.0.126-1.el8_9.src",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-0:6.0.126-1.el8_9.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src"
},
"product_reference": "dotnet6.0-0:6.0.126-1.el8_9.src",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-46233",
"cwe": {
"id": "CWE-916",
"name": "Use of Password Hash With Insufficient Computational Effort"
},
"discovery_date": "2023-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2246369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in crypto-js in how PBKDF2 is 1,000 times weaker than originally specified in 1993 and at least 1,300,000 times weaker than the current industry standard. This issue is because both default to SHA1, a cryptographic hash algorithm considered insecure since at least 2005, and default to one single iteration, a \u0027strength\u0027 or \u0027difficulty\u0027 value specified at 1,000 when specified in 1993. PBKDF2 relies on the iteration count as a countermeasure to preimage and collision attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in crypto-js\u0027s PBKDF2 implementation represents a important CVE issue due to its fundamental impact on cryptographic security. PBKDF2 is widely used for password protection and signature generation, making it a core component of many security-critical systems. However, the default settings in crypto-js result in significantly weaker security than industry standards, with the algorithm being 1,000 times weaker than originally specified in 1993 and millions of times weaker than current recommendations. This weakness stems from the use of the insecure SHA1 hash algorithm and the default of only one iteration, both of which greatly diminish the resistance against various attacks. Consequently, attackers can exploit this vulnerability to create identical cryptographic signatures, potentially gaining unauthorized access to sensitive information or compromising system integrity. Given the widespread use of crypto-js and the important role of PBKDF2 in cryptographic operations, addressing this vulnerability is paramount to safeguarding against security breaches and maintaining trust in digital systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-46233"
},
{
"category": "external",
"summary": "RHBZ#2246369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-46233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233"
},
{
"category": "external",
"summary": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf",
"url": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf"
}
],
"release_date": "2023-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0157
Vulnerability from csaf_redhat
Published
2024-01-10 18:38
Modified
2025-03-03 16:55
Summary
Red Hat Security Advisory: .NET 7.0 security update
Notes
Topic
An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.115 and .NET Runtime 7.0.15.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.115 and .NET Runtime 7.0.15.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0157",
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0157.json"
}
],
"title": "Red Hat Security Advisory: .NET 7.0 security update",
"tracking": {
"current_release_date": "2025-03-03T16:55:53+00:00",
"generator": {
"date": "2025-03-03T16:55:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.3.1"
}
},
"id": "RHSA-2024:0157",
"initial_release_date": "2024-01-10T18:38:11+00:00",
"revision_history": [
{
"date": "2024-01-10T18:38:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T18:38:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-03-03T16:55:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el8_9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el8_9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el8_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el8_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet7.0-0:7.0.115-1.el8_9.src",
"product": {
"name": "dotnet7.0-0:7.0.115-1.el8_9.src",
"product_id": "dotnet7.0-0:7.0.115-1.el8_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0@7.0.115-1.el8_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-0:7.0.115-1.el8_9.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src"
},
"product_reference": "dotnet7.0-0:7.0.115-1.el8_9.src",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-0:7.0.115-1.el8_9.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src"
},
"product_reference": "dotnet7.0-0:7.0.115-1.el8_9.src",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-46233",
"cwe": {
"id": "CWE-916",
"name": "Use of Password Hash With Insufficient Computational Effort"
},
"discovery_date": "2023-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2246369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in crypto-js in how PBKDF2 is 1,000 times weaker than originally specified in 1993 and at least 1,300,000 times weaker than the current industry standard. This issue is because both default to SHA1, a cryptographic hash algorithm considered insecure since at least 2005, and default to one single iteration, a \u0027strength\u0027 or \u0027difficulty\u0027 value specified at 1,000 when specified in 1993. PBKDF2 relies on the iteration count as a countermeasure to preimage and collision attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in crypto-js\u0027s PBKDF2 implementation represents a important CVE issue due to its fundamental impact on cryptographic security. PBKDF2 is widely used for password protection and signature generation, making it a core component of many security-critical systems. However, the default settings in crypto-js result in significantly weaker security than industry standards, with the algorithm being 1,000 times weaker than originally specified in 1993 and millions of times weaker than current recommendations. This weakness stems from the use of the insecure SHA1 hash algorithm and the default of only one iteration, both of which greatly diminish the resistance against various attacks. Consequently, attackers can exploit this vulnerability to create identical cryptographic signatures, potentially gaining unauthorized access to sensitive information or compromising system integrity. Given the widespread use of crypto-js and the important role of PBKDF2 in cryptographic operations, addressing this vulnerability is paramount to safeguarding against security breaches and maintaining trust in digital systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-46233"
},
{
"category": "external",
"summary": "RHBZ#2246369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-46233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233"
},
{
"category": "external",
"summary": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf",
"url": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf"
}
],
"release_date": "2023-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:38:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0156
Vulnerability from csaf_redhat
Published
2024-01-10 18:19
Modified
2025-03-03 16:55
Summary
Red Hat Security Advisory: .NET 6.0 security update
Notes
Topic
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0156",
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0156.json"
}
],
"title": "Red Hat Security Advisory: .NET 6.0 security update",
"tracking": {
"current_release_date": "2025-03-03T16:55:20+00:00",
"generator": {
"date": "2025-03-03T16:55:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.3.1"
}
},
"id": "RHSA-2024:0156",
"initial_release_date": "2024-01-10T18:19:10+00:00",
"revision_history": [
{
"date": "2024-01-10T18:19:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T18:19:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-03-03T16:55:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el9_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el9_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.126-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.126-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.126-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.26-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.126-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.126-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el9_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet6.0-0:6.0.126-1.el9_3.src",
"product": {
"name": "dotnet6.0-0:6.0.126-1.el9_3.src",
"product_id": "dotnet6.0-0:6.0.126-1.el9_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet6.0@6.0.126-1.el9_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-0:6.0.126-1.el9_3.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src"
},
"product_reference": "dotnet6.0-0:6.0.126-1.el9_3.src",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-0:6.0.126-1.el9_3.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src"
},
"product_reference": "dotnet6.0-0:6.0.126-1.el9_3.src",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
},
"product_reference": "dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-46233",
"cwe": {
"id": "CWE-916",
"name": "Use of Password Hash With Insufficient Computational Effort"
},
"discovery_date": "2023-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2246369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in crypto-js in how PBKDF2 is 1,000 times weaker than originally specified in 1993 and at least 1,300,000 times weaker than the current industry standard. This issue is because both default to SHA1, a cryptographic hash algorithm considered insecure since at least 2005, and default to one single iteration, a \u0027strength\u0027 or \u0027difficulty\u0027 value specified at 1,000 when specified in 1993. PBKDF2 relies on the iteration count as a countermeasure to preimage and collision attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in crypto-js\u0027s PBKDF2 implementation represents a important CVE issue due to its fundamental impact on cryptographic security. PBKDF2 is widely used for password protection and signature generation, making it a core component of many security-critical systems. However, the default settings in crypto-js result in significantly weaker security than industry standards, with the algorithm being 1,000 times weaker than originally specified in 1993 and millions of times weaker than current recommendations. This weakness stems from the use of the insecure SHA1 hash algorithm and the default of only one iteration, both of which greatly diminish the resistance against various attacks. Consequently, attackers can exploit this vulnerability to create identical cryptographic signatures, potentially gaining unauthorized access to sensitive information or compromising system integrity. Given the widespread use of crypto-js and the important role of PBKDF2 in cryptographic operations, addressing this vulnerability is paramount to safeguarding against security breaches and maintaining trust in digital systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-46233"
},
{
"category": "external",
"summary": "RHBZ#2246369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-46233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233"
},
{
"category": "external",
"summary": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf",
"url": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf"
}
],
"release_date": "2023-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:19:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:19:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:19:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T18:19:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-6.0-debuginfo-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-6.0-0:6.0.26-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-6.0-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-0:6.0.126-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debuginfo-0:6.0.126-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet6.0-debugsource-0:6.0.126-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0151
Vulnerability from csaf_redhat
Published
2024-01-10 15:42
Modified
2025-03-20 02:12
Summary
Red Hat Security Advisory: .NET 7.0 security update
Notes
Topic
An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.115 and .NET Runtime 7.0.15.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.115 and .NET Runtime 7.0.15.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0151",
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0151.json"
}
],
"title": "Red Hat Security Advisory: .NET 7.0 security update",
"tracking": {
"current_release_date": "2025-03-20T02:12:47+00:00",
"generator": {
"date": "2025-03-20T02:12:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.4.1"
}
},
"id": "RHSA-2024:0151",
"initial_release_date": "2024-01-10T15:42:10+00:00",
"revision_history": [
{
"date": "2024-01-10T15:42:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T15:42:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-03-20T02:12:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el9_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el9_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el9_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.115-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.115-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.115-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.15-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.115-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.115-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.115-1.el9_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet7.0-0:7.0.115-1.el9_3.src",
"product": {
"name": "dotnet7.0-0:7.0.115-1.el9_3.src",
"product_id": "dotnet7.0-0:7.0.115-1.el9_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet7.0@7.0.115-1.el9_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-0:7.0.115-1.el9_3.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src"
},
"product_reference": "dotnet7.0-0:7.0.115-1.el9_3.src",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-0:7.0.115-1.el9_3.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src"
},
"product_reference": "dotnet7.0-0:7.0.115-1.el9_3.src",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
},
"product_reference": "dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-46233",
"cwe": {
"id": "CWE-916",
"name": "Use of Password Hash With Insufficient Computational Effort"
},
"discovery_date": "2023-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2246369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in crypto-js in how PBKDF2 is 1,000 times weaker than originally specified in 1993 and at least 1,300,000 times weaker than the current industry standard. This issue is because both default to SHA1, a cryptographic hash algorithm considered insecure since at least 2005, and default to one single iteration, a \u0027strength\u0027 or \u0027difficulty\u0027 value specified at 1,000 when specified in 1993. PBKDF2 relies on the iteration count as a countermeasure to preimage and collision attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in crypto-js\u0027s PBKDF2 implementation represents a important CVE issue due to its fundamental impact on cryptographic security. PBKDF2 is widely used for password protection and signature generation, making it a core component of many security-critical systems. However, the default settings in crypto-js result in significantly weaker security than industry standards, with the algorithm being 1,000 times weaker than originally specified in 1993 and millions of times weaker than current recommendations. This weakness stems from the use of the insecure SHA1 hash algorithm and the default of only one iteration, both of which greatly diminish the resistance against various attacks. Consequently, attackers can exploit this vulnerability to create identical cryptographic signatures, potentially gaining unauthorized access to sensitive information or compromising system integrity. Given the widespread use of crypto-js and the important role of PBKDF2 in cryptographic operations, addressing this vulnerability is paramount to safeguarding against security breaches and maintaining trust in digital systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-46233"
},
{
"category": "external",
"summary": "RHBZ#2246369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-46233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46233"
},
{
"category": "external",
"summary": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf",
"url": "https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf"
}
],
"release_date": "2023-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-7.0-debuginfo-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-7.0-source-built-artifacts-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-7.0-0:7.0.15-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-7.0-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-0:7.0.115-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debuginfo-0:7.0.115-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet7.0-debugsource-0:7.0.115-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0152
Vulnerability from csaf_redhat
Published
2024-01-10 15:42
Modified
2024-11-23 03:56
Summary
Red Hat Security Advisory: .NET 8.0 security update
Notes
Topic
An update for .NET 8.0 is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.101 and .NET Runtime 8.0.1.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 8.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.101 and .NET Runtime 8.0.1.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0152",
"url": "https://access.redhat.com/errata/RHSA-2024:0152"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0152.json"
}
],
"title": "Red Hat Security Advisory: .NET 8.0 security update",
"tracking": {
"current_release_date": "2024-11-23T03:56:34+00:00",
"generator": {
"date": "2024-11-23T03:56:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:0152",
"initial_release_date": "2024-01-10T15:42:17+00:00",
"revision_history": [
{
"date": "2024-01-10T15:42:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T15:42:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-23T03:56:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-host-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-host-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el9_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el9_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-host-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-host-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el9_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-host-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-host-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el9_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet8.0-0:8.0.101-1.el9_3.src",
"product": {
"name": "dotnet8.0-0:8.0.101-1.el9_3.src",
"product_id": "dotnet8.0-0:8.0.101-1.el9_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0@8.0.101-1.el9_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-0:8.0.101-1.el9_3.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src"
},
"product_reference": "dotnet8.0-0:8.0.101-1.el9_3.src",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-0:8.0.101-1.el9_3.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src"
},
"product_reference": "dotnet8.0-0:8.0.101-1.el9_3.src",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0152"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0152"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:42:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0152"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"AppStream-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el9_3.src",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el9_3.x86_64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.aarch64",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.ppc64le",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.s390x",
"CRB-9.3.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0255
Vulnerability from csaf_redhat
Published
2024-01-15 16:01
Modified
2024-11-23 03:57
Summary
Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update
Notes
Topic
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.
The following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.126). (BZ#2255300)
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.126). (BZ#2255300)\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0255",
"url": "https://access.redhat.com/errata/RHSA-2024:0255"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0255.json"
}
],
"title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-23T03:57:08+00:00",
"generator": {
"date": "2024-11-23T03:57:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:0255",
"initial_release_date": "2024-01-15T16:01:35+00:00",
"revision_history": [
{
"date": "2024-01-15T16:01:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-15T16:01:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-23T03:57:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7"
}
}
}
],
"category": "product_family",
"name": ".NET Core on Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.126-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.126-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.126-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.26-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.126-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.126-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"product": {
"name": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"product_id": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.126-1.el7_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"product": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"product_id": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.126-1.el7_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
},
"product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-15T16:01:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-15T16:01:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-15T16:01:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.src",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.26-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.126-1.el7_9.x86_64",
"7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.126-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
rhsa-2024:0150
Vulnerability from csaf_redhat
Published
2024-01-10 15:44
Modified
2024-11-23 03:56
Summary
Red Hat Security Advisory: .NET 8.0 security update
Notes
Topic
An update for .NET 8.0 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.101 and .NET Runtime 8.0.1.
Security Fix(es):
* dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for .NET 8.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.101 and .NET Runtime 8.0.1.\n\nSecurity Fix(es):\n\n* dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS) (CVE-2024-0056)\n\n* dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)\n\n* dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0150",
"url": "https://access.redhat.com/errata/RHSA-2024:0150"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0150.json"
}
],
"title": "Red Hat Security Advisory: .NET 8.0 security update",
"tracking": {
"current_release_date": "2024-11-23T03:56:02+00:00",
"generator": {
"date": "2024-11-23T03:56:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:0150",
"initial_release_date": "2024-01-10T15:44:52+00:00",
"revision_history": [
{
"date": "2024-01-10T15:44:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-10T15:44:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-23T03:56:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-host-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-host-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el8_9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el8_9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-host-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-host-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el8_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-runtime-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-host-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-host-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-targeting-pack-8.0@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-templates-8.0@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"product_id": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debugsource@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-apphost-pack-8.0-debuginfo@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-hostfxr-8.0-debuginfo@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_id": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-8.0-debuginfo@8.0.1-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-debuginfo@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0-debuginfo@8.0.101-1.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"product": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"product_id": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-8.0-source-built-artifacts@8.0.101-1.el8_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet8.0-0:8.0.101-1.el8_9.src",
"product": {
"name": "dotnet8.0-0:8.0.101-1.el8_9.src",
"product_id": "dotnet8.0-0:8.0.101-1.el8_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet8.0@8.0.101-1.el8_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-0:8.0.101-1.el8_9.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src"
},
"product_reference": "dotnet8.0-0:8.0.101-1.el8_9.src",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-host-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64"
},
"product_reference": "dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-0:8.0.101-1.el8_9.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src"
},
"product_reference": "dotnet8.0-0:8.0.101-1.el8_9.src",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
},
"product_reference": "netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"relates_to_product_reference": "CRB-8.9.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255384"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This may allow the attacker to steal authentication credentials intended for the database server, even if the connection is established over an encrypted channel like TLS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw allows attackers to execute an adversary-in-the-middle (AiTM) attack, potentially enabling the theft of authentication credentials even when the connection is encrypted with protocols like TLS. This security lapse could lead to unauthorized access to sensitive databases, raising concerns about data breaches and the compromise of confidential information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0056"
},
{
"category": "external",
"summary": "RHBZ#2255384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255384"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0056"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0056"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:44:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0150"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: Information Disclosure: MD.SqlClient(MDS) \u0026 System.data.SQLClient (SDS)"
},
{
"cve": "CVE-2024-0057",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2023-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255386"
}
],
"notes": [
{
"category": "description",
"text": "A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly report that X.509 chain building failed, but it will return an incorrect reason code for the failure. Applications which utilize this reason code to make their own chain building trust decisions may inadvertently treat this scenario as a successful chain build. This could allow an adversary to subvert the app\u0027s typical authentication logic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: X509 Certificates - Validation Bypass across Azure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability for an attacker to exploit this vulnerability by presenting an arbitrary untrusted certificate with malformed signatures can lead to a breach in the application\u0027s authentication logic. This loophole poses a serious threat, as it could lead to unauthorized access, data breaches, and the compromise of sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-0057"
},
{
"category": "external",
"summary": "RHBZ#2255386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0057"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0057"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:44:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0150"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: X509 Certificates - Validation Bypass across Azure"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-01-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2257566"
}
],
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in .NET Core project templates that utilize JWT-based authentication tokens. This issue may allow an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This DoS vulnerability in .NET Core project templates utilizing JWT-based authentication tokens is considered a moderate issue due to its restricted impact. While unauthenticated clients can exploit the server\u0027s memory, potentially causing an out-of-memory condition and service disruption, the vulnerability does not lead to remote code execution or compromise sensitive data. Its exploitability is contingent on specific project configurations, limiting the scope of affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21319"
},
{
"category": "external",
"summary": "RHBZ#2257566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257566"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21319",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21319"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md",
"url": "https://github.com/dotnet/core/blob/ce802c56fde3abe2ae14ad09a1b8991b6709c18b/release-notes/6.0/6.0.26/6.0.26.md"
}
],
"release_date": "2024-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-10T15:44:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0150"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-host-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-hostfxr-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-runtime-8.0-debuginfo-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-sdk-8.0-source-built-artifacts-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-targeting-pack-8.0-0:8.0.1-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet-templates-8.0-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-0:8.0.101-1.el8_9.src",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debuginfo-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:dotnet8.0-debugsource-0:8.0.101-1.el8_9.x86_64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.aarch64",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.ppc64le",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.s390x",
"CRB-8.9.0.Z.MAIN:netstandard-targeting-pack-2.1-0:8.0.101-1.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
}
]
}
msrc_cve-2024-21319
Vulnerability from csaf_microsoft
Published
2024-01-09 08:00
Modified
2024-01-09 08:00
Summary
Microsoft Identity Denial of service vulnerability
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Customer Action
Required. The vulnerability documented by this CVE requires customer action to resolve.
{
"document": {
"acknowledgments": [
{
"names": [
"Morgan Brown with Microsoft"
]
}
],
"aggregate_severity": {
"namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
},
{
"category": "general",
"text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
"title": "Customer Action"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-21319 Microsoft Identity Denial of service vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
},
{
"category": "self",
"summary": "CVE-2024-21319 Microsoft Identity Denial of service vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-21319.json"
},
{
"category": "external",
"summary": "Microsoft Exploitability Index",
"url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Microsoft Identity Denial of service vulnerability",
"tracking": {
"current_release_date": "2024-01-09T08:00:00.000Z",
"generator": {
"date": "2025-05-03T01:46:23.053Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-21319",
"initial_release_date": "2024-01-09T08:00:00.000Z",
"revision_history": [
{
"date": "2024-01-09T08:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.0.26",
"product": {
"name": ".NET 6.0 \u003c6.0.26",
"product_id": "13"
}
},
{
"category": "product_version",
"name": "6.0.26",
"product": {
"name": ".NET 6.0 6.0.26",
"product_id": "12009"
}
}
],
"category": "product_name",
"name": ".NET 6.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c17.2.23",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.2 \u003c17.2.23",
"product_id": "12"
}
},
{
"category": "product_version",
"name": "17.2.23",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.2 17.2.23",
"product_id": "12051"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c17.6.11",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.6 \u003c17.6.11",
"product_id": "9"
}
},
{
"category": "product_version",
"name": "17.6.11",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.6 17.6.11",
"product_id": "12187"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.6"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c17.4.15",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.4 \u003c17.4.15",
"product_id": "11"
}
},
{
"category": "product_version",
"name": "17.4.15",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.4 17.4.15",
"product_id": "12129"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.4"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c17.8.4",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.8 \u003c17.8.4",
"product_id": "7"
}
},
{
"category": "product_version",
"name": "17.8.4",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.8 17.8.4",
"product_id": "12271"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.8"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.0.15",
"product": {
"name": ".NET 7.0 \u003c7.0.15",
"product_id": "10"
}
},
{
"category": "product_version",
"name": "7.0.15",
"product": {
"name": ".NET 7.0 7.0.15",
"product_id": "12130"
}
}
],
"category": "product_name",
"name": ".NET 7.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c8.0.1",
"product": {
"name": ".NET 8.0 \u003c8.0.1",
"product_id": "8"
}
},
{
"category": "product_version",
"name": "8.0.1",
"product": {
"name": ".NET 8.0 8.0.1",
"product_id": "12260"
}
}
],
"category": "product_name",
"name": ".NET 8.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.34.0",
"product": {
"name": "Microsoft Identity Model v6.0.0 for Nuget \u003c6.34.0",
"product_id": "6"
}
},
{
"category": "product_version",
"name": "6.34.0",
"product": {
"name": "Microsoft Identity Model v6.0.0 for Nuget 6.34.0",
"product_id": "12274"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v6.0.0 for Nuget"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.1.2",
"product": {
"name": "Microsoft Identity Model v7.0.0 for Nuget \u003c7.1.2",
"product_id": "5"
}
},
{
"category": "product_version",
"name": "7.1.2",
"product": {
"name": "Microsoft Identity Model v7.0.0 for Nuget 7.1.2",
"product_id": "12275"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v7.0.0 for Nuget"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.34.0",
"product": {
"name": "Microsoft Identity Model v6.0.0 \u003c6.34.0",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "6.34.0",
"product": {
"name": "Microsoft Identity Model v6.0.0 6.34.0",
"product_id": "12283"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v6.0.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c5.7.0",
"product": {
"name": "Microsoft Identity Model v5.0.0 \u003c5.7.0",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "5.7.0",
"product": {
"name": "Microsoft Identity Model v5.0.0 5.7.0",
"product_id": "12284"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v5.0.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.1.2",
"product": {
"name": "Microsoft Identity Model v7.0.0 \u003c7.1.2",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "7.1.2",
"product": {
"name": "Microsoft Identity Model v7.0.0 7.1.2",
"product_id": "12282"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v7.0.0"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c5.7.0",
"product": {
"name": "Microsoft Identity Model v5.0.0 for Nuget \u003c5.7.0",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "5.7.0",
"product": {
"name": "Microsoft Identity Model v5.0.0 for Nuget 5.7.0",
"product_id": "12285"
}
}
],
"category": "product_name",
"name": "Microsoft Identity Model v5.0.0 for Nuget"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "general",
"text": "Microsoft",
"title": "Assigning CNA"
},
{
"category": "faq",
"text": "The attacker must have access to the public encrypt key registered with the IDP(Entra ID) for successful exploitation.",
"title": "According to the CVSS metric, privileges required is high (PR:H). What does that mean for this vulnerability?"
},
{
"category": "faq",
"text": "An attacker could exploit this vulnerability by crafting a malicious JSON Web Encryption (JWE) token with a high compression ratio. This token, when processed by a server, leads to excessive memory allocation and processing time during decompression, causing a denial-of-service (DoS) condition.\nIt\u0027s important to note that the attacker must have access to the public key registered with the IDP(AAD) for successful exploitation.",
"title": "How could an attacker exploit this vulnerability?"
},
{
"category": "faq",
"text": "A scope change (S:C) in the CVSS metric indicates that successful exploitation of this vulnerability could extend beyond the immediate processing of malicious tokens, affecting the overall availability of the system by causing a denial-of-service (DoS) condition.",
"title": "According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability?"
}
],
"product_status": {
"fixed": [
"12009",
"12051",
"12129",
"12130",
"12187",
"12260",
"12271",
"12274",
"12275",
"12282",
"12283",
"12284",
"12285"
],
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-21319 Microsoft Identity Denial of service vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
},
{
"category": "self",
"summary": "CVE-2024-21319 Microsoft Identity Denial of service vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-21319.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "6.0.26:Security Update:https://support.microsoft.com/help/5033733",
"product_ids": [
"13"
],
"url": "https://support.microsoft.com/help/5033733"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "17.2.23:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
"product_ids": [
"12"
],
"url": "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "17.6.11:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
"product_ids": [
"9"
],
"url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "17.4.15:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
"product_ids": [
"11"
],
"url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "17.8.4:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
"product_ids": [
"7"
],
"url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "7.0.15:Security Update:https://support.microsoft.com/help/5033734",
"product_ids": [
"10"
],
"url": "https://support.microsoft.com/help/5033734"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "8.0.1:Security Update:https://support.microsoft.com/help/5033741",
"product_ids": [
"8"
],
"url": "https://support.microsoft.com/help/5033741"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "6.34.0:Security Update:https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet",
"product_ids": [
"6",
"3"
],
"url": "https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "7.1.2:Security Update:https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet",
"product_ids": [
"5",
"4"
],
"url": "https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet"
},
{
"category": "vendor_fix",
"date": "2024-01-09T08:00:00.000Z",
"details": "5.7.0:Security Update:https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet",
"product_ids": [
"2",
"1"
],
"url": "https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "CHANGED",
"temporalScore": 5.9,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Denial of Service"
},
{
"category": "exploit_status",
"details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely"
}
],
"title": "Microsoft Identity Denial of service vulnerability"
}
]
}
fkie_cve-2024-21319
Vulnerability from fkie_nvd
Published
2024-01-09 19:15
Modified
2024-11-21 08:54
Severity ?
Summary
Microsoft Identity Denial of service vulnerability
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319 | Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | .net | * | |
| microsoft | .net | * | |
| microsoft | .net | * | |
| microsoft | identity_model | * | |
| microsoft | identity_model | * | |
| microsoft | identity_model | * | |
| microsoft | visual_studio_2022 | * | |
| microsoft | visual_studio_2022 | * | |
| microsoft | visual_studio_2022 | * | |
| microsoft | visual_studio_2022 | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "498DF6C9-EC7C-4A4F-A188-B22E82FD6540",
"versionEndExcluding": "6.0.26",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3CE00AC7-D405-4567-8CB1-C3ED7E2925C6",
"versionEndExcluding": "7.0.15",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8583992E-20C5-4437-ACFE-22FEBD539E4C",
"versionEndExcluding": "8.0.1",
"versionStartIncluding": "8.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "F39C475D-FDCE-4DE1-B936-01D268FD7645",
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "A286ABF0-E7B7-44E0-9EF1-0226BDD5338A",
"versionEndExcluding": "6.34.0",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "B12074D2-B6C2-4797-BCE8-27A5E6314FB1",
"versionEndExcluding": "7.1.2",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "42B33777-27CB-45CC-A95A-3F4369DBB31D",
"versionEndExcluding": "17.2.23",
"versionStartIncluding": "17.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E578915C-4563-4767-A1F9-7C0ADF58BDA6",
"versionEndExcluding": "17.4.15",
"versionStartIncluding": "17.4.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AB1E1DB4-BE9A-48E9-808D-E239CFDB26BA",
"versionEndExcluding": "17.6.11",
"versionStartIncluding": "17.6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1A6D3ECE-ED4D-4778-900F-4D4E1D05F00E",
"versionEndExcluding": "17.8.4",
"versionStartIncluding": "17.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Identity Denial of service vulnerability"
},
{
"lang": "es",
"value": "Vulnerabilidad de denegaci\u00f3n de servicio de identidad de Microsoft"
}
],
"id": "CVE-2024-21319",
"lastModified": "2024-11-21T08:54:06.097",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.3,
"impactScore": 4.0,
"source": "secure@microsoft.com",
"type": "Primary"
}
]
},
"published": "2024-01-09T19:15:12.070",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ncsc-2025-0106
Vulnerability from csaf_ncscnl
Published
2025-04-08 13:57
Modified
2025-04-08 13:57
Summary
Kwetsbaarheden verholpen in Siemens producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Siemens heeft kwetsbaarheden verholpen in diverse producten als Industrial Edge Devices, Mendix, SENTRON, SIDIS, SIMATIC, SIPLUS,Insights Hub Private Cloud, Siemens License Server en Solid Edge.
Interpretaties
De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:
- Denial-of-Service (DoS)
- Manipulatie van gegevens
- Omzeilen van een beveiligingsmaatregel
- Omzeilen van authenticatie
- (Remote) code execution (root/admin rechten)
- (Remote) code execution (Gebruikersrechten)
- Toegang tot systeemgegevens
- Toegang tot gevoelige gegevens
- Spoofing
De kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.
Oplossingen
Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.
Dreigingsinformatie
Kans
medium
Schade
high
CWE-287
Improper Authentication
CWE-1240
Use of a Cryptographic Primitive with a Risky Implementation
CWE-606
Unchecked Input for Loop Condition
CWE-1395
Dependency on Vulnerable Third-Party Component
CWE-363
Race Condition Enabling Link Following
CWE-420
Unprotected Alternate Channel
CWE-684
Incorrect Provision of Specified Functionality
CWE-834
Excessive Iteration
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
CWE-440
Expected Behavior Violation
CWE-754
Improper Check for Unusual or Exceptional Conditions
CWE-319
Cleartext Transmission of Sensitive Information
CWE-354
Improper Validation of Integrity Check Value
CWE-325
Missing Cryptographic Step
CWE-404
Improper Resource Shutdown or Release
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-1333
Inefficient Regular Expression Complexity
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
CWE-400
Uncontrolled Resource Consumption
CWE-787
Out-of-bounds Write
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-122
Heap-based Buffer Overflow
CWE-20
Improper Input Validation
CWE-1390
Weak Authentication
CWE-204
Observable Response Discrepancy
CWE-15
External Control of System or Configuration Setting
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-653
Improper Isolation or Compartmentalization
CWE-94
Improper Control of Generation of Code ('Code Injection')
CWE-620
Unverified Password Change
CWE-798
Use of Hard-coded Credentials
CWE-269
Improper Privilege Management
CWE-295
Improper Certificate Validation
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Siemens heeft kwetsbaarheden verholpen in diverse producten als Industrial Edge Devices, Mendix, SENTRON, SIDIS, SIMATIC, SIPLUS,Insights Hub Private Cloud, Siemens License Server en Solid Edge.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van een beveiligingsmaatregel\n- Omzeilen van authenticatie\n- (Remote) code execution (root/admin rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Toegang tot gevoelige gegevens\n- Spoofing\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico\u0027s zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "description",
"text": " ",
"title": "Dreigingsinformatie"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Authentication",
"title": "CWE-287"
},
{
"category": "general",
"text": "Use of a Cryptographic Primitive with a Risky Implementation",
"title": "CWE-1240"
},
{
"category": "general",
"text": "Unchecked Input for Loop Condition",
"title": "CWE-606"
},
{
"category": "general",
"text": "Dependency on Vulnerable Third-Party Component",
"title": "CWE-1395"
},
{
"category": "general",
"text": "Race Condition Enabling Link Following",
"title": "CWE-363"
},
{
"category": "general",
"text": "Unprotected Alternate Channel",
"title": "CWE-420"
},
{
"category": "general",
"text": "Incorrect Provision of Specified Functionality",
"title": "CWE-684"
},
{
"category": "general",
"text": "Excessive Iteration",
"title": "CWE-834"
},
{
"category": "general",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "general",
"text": "Expected Behavior Violation",
"title": "CWE-440"
},
{
"category": "general",
"text": "Improper Check for Unusual or Exceptional Conditions",
"title": "CWE-754"
},
{
"category": "general",
"text": "Cleartext Transmission of Sensitive Information",
"title": "CWE-319"
},
{
"category": "general",
"text": "Improper Validation of Integrity Check Value",
"title": "CWE-354"
},
{
"category": "general",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "general",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Use of a Broken or Risky Cryptographic Algorithm",
"title": "CWE-327"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Weak Authentication",
"title": "CWE-1390"
},
{
"category": "general",
"text": "Observable Response Discrepancy",
"title": "CWE-204"
},
{
"category": "general",
"text": "External Control of System or Configuration Setting",
"title": "CWE-15"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Improper Isolation or Compartmentalization",
"title": "CWE-653"
},
{
"category": "general",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "Unverified Password Change",
"title": "CWE-620"
},
{
"category": "general",
"text": "Use of Hard-coded Credentials",
"title": "CWE-798"
},
{
"category": "general",
"text": "Improper Privilege Management",
"title": "CWE-269"
},
{
"category": "general",
"text": "Improper Certificate Validation",
"title": "CWE-295"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-187636.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-277137.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-525431.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-634640.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-672923.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-725549.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-819629.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-874353.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-817234.pdf"
}
],
"title": "Kwetsbaarheden verholpen in Siemens producten",
"tracking": {
"current_release_date": "2025-04-08T13:57:11.959816Z",
"generator": {
"date": "2025-02-25T15:15:00Z",
"engine": {
"name": "V.A.",
"version": "1.0"
}
},
"id": "NCSC-2025-0106",
"initial_release_date": "2025-04-08T13:57:11.959816Z",
"revision_history": [
{
"date": "2025-04-08T13:57:11.959816Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.21.1-1-a",
"product": {
"name": "vers:unknown/\u003cv1.21.1-1-a",
"product_id": "CSAFPID-2631845"
}
}
],
"category": "product_name",
"name": "Industrial Edge Own Device (IEOD)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.21.1-1",
"product": {
"name": "vers:unknown/\u003cv1.21.1-1",
"product_id": "CSAFPID-2631844"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - x86-64 V1.21"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.20.2-1",
"product": {
"name": "vers:unknown/\u003cv1.20.2-1",
"product_id": "CSAFPID-2631843"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - x86-64 V1.20"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631842"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - x86-64 V1.19"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631841"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - x86-64 V1.18"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631840"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - x86-64 V1.17"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.21.1-1",
"product": {
"name": "vers:unknown/\u003cv1.21.1-1",
"product_id": "CSAFPID-2631839"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - arm64 V1.21"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.20.2-1",
"product": {
"name": "vers:unknown/\u003cv1.20.2-1",
"product_id": "CSAFPID-2631838"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - arm64 V1.20"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631837"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - arm64 V1.19"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631836"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - arm64 V1.18"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631835"
}
}
],
"category": "product_name",
"name": "Industrial Edge Device Kit - arm64 V1.17"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631900"
}
}
],
"category": "product_name",
"name": "SENTRON 7KT PAC1260 Data Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/4.0",
"product": {
"name": "vers:unknown/4.0",
"product_id": "CSAFPID-2632341"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/4.1",
"product": {
"name": "vers:unknown/4.1",
"product_id": "CSAFPID-2632342"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/4.2",
"product": {
"name": "vers:unknown/4.2",
"product_id": "CSAFPID-2632343"
}
}
],
"category": "product_name",
"name": "License Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv4.3",
"product": {
"name": "vers:unknown/\u003cv4.3",
"product_id": "CSAFPID-2631790"
}
}
],
"category": "product_name",
"name": "Siemens License Server (SLS)"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/224.0 update 12",
"product": {
"name": "vers:siemens/224.0 update 12",
"product_id": "CSAFPID-2632460"
}
},
{
"category": "product_version_range",
"name": "vers:siemens/225.0 update 3",
"product": {
"name": "vers:siemens/225.0 update 3",
"product_id": "CSAFPID-2632459"
}
}
],
"category": "product_name",
"name": "Solid Edge"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/v224.0 update 12",
"product": {
"name": "vers:siemens/v224.0 update 12",
"product_id": "CSAFPID-2632083"
}
}
],
"category": "product_name",
"name": "Solid_Edge_Se2024"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/2.0 sp1",
"product": {
"name": "vers:siemens/2.0 sp1",
"product_id": "CSAFPID-1211926"
}
}
],
"category": "product_name",
"name": "SINEC Network Management System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/none",
"product": {
"name": "vers:unknown/none",
"product_id": "CSAFPID-2619361"
}
}
],
"category": "product_name",
"name": "Siemens Simatic S7-1500 Tm Mfp"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003e=3|\u003c312",
"product": {
"name": "vers:unknown/\u003e=3|\u003c312",
"product_id": "CSAFPID-1209122"
}
}
],
"category": "product_name",
"name": "Siemens Telecontrol Server Basic"
}
],
"category": "product_family",
"name": "Siemens"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv224.0update12",
"product": {
"name": "vers:unknown/\u003cv224.0update12",
"product_id": "CSAFPID-2631854"
}
}
],
"category": "product_name",
"name": "Solid Edge SE2024"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv225.0update3",
"product": {
"name": "vers:unknown/\u003cv225.0update3",
"product_id": "CSAFPID-2631855"
}
}
],
"category": "product_name",
"name": "Solid Edge SE2025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv2.0.0",
"product": {
"name": "vers:unknown/\u003cv2.0.0",
"product_id": "CSAFPID-1296722"
}
}
],
"category": "product_name",
"name": "SIMATIC CFU DIQ"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv2.0",
"product": {
"name": "vers:unknown/\u003cv2.0",
"product_id": "CSAFPID-2631923"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv2.0.0",
"product": {
"name": "vers:unknown/\u003cv2.0.0",
"product_id": "CSAFPID-1296723"
}
}
],
"category": "product_name",
"name": "SIMATIC CFU PA"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631924"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200AL IM 157-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631925"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200M IM 153-4 PN IO HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631926"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200M IM 153-4 PN IO ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631927"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200MP IM 155-5 PN BA"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631928"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200MP IM 155-5 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631929"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200MP IM 155-5 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631932"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-3 PN FO"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631933"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-3 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631934"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-3 PN HS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631935"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-3 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765658"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-8 PN/DP CPU"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765659"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM 151-8F PN/DP CPU"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631856"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP F-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631858"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631860"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP F-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631862"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765660"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 MF HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631936"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 PN BA"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.3",
"product": {
"name": "vers:unknown/\u003cv1.3",
"product_id": "CSAFPID-2631937"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631938"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631939"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 PN HS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631940"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP IM 155-6 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631920"
}
}
],
"category": "product_name",
"name": "SIDOOR ATD430W"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631921"
}
}
],
"category": "product_name",
"name": "SIDOOR ATE530G COATED"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631922"
}
}
],
"category": "product_name",
"name": "SIDOOR ATE530S COATED"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631967"
}
}
],
"category": "product_name",
"name": "SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631968"
}
}
],
"category": "product_name",
"name": "SIMOCODE pro V PROFINET"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631969"
}
}
],
"category": "product_name",
"name": "SINUMERIK 840D sl"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2632004"
}
}
],
"category": "product_name",
"name": "SIWAREX WP231"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2632005"
}
}
],
"category": "product_name",
"name": "SIWAREX WP241"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2632006"
}
}
],
"category": "product_name",
"name": "SIWAREX WP251"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2632007"
}
}
],
"category": "product_name",
"name": "SIWAREX WP521 ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2632008"
}
}
],
"category": "product_name",
"name": "SIWAREX WP522 ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631966"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765690"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765691"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv8.3",
"product": {
"name": "vers:unknown/\u003cv8.3",
"product_id": "CSAFPID-2459039"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631970"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200M IM 153-4 PN IO HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631971"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200M IM 153-4 PN IO ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631972"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200MP IM 155-5 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631973"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631974"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200MP IM 155-5 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631975"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200MP IM 155-5 PN ST TX RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765700"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM 151-8 PN/DP CPU"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1765701"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM 151-8F PN/DP CPU"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631976"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-3 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631977"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-3 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1296980"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP CPU 1512SP F-1 PN"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631978"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN HF"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631979"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631980"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN HF TX RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631981"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN ST"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631982"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN ST BA"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631983"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631984"
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP IM 155-6 PN ST TX RAIL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631985"
}
}
],
"category": "product_name",
"name": "SIPLUS HCS4200 CIM4210"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/10.16.0",
"product": {
"name": "vers:unknown/10.16.0",
"product_id": "CSAFPID-2632402"
}
}
],
"category": "product_name",
"name": "Mendix Runtime"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv10.21.0",
"product": {
"name": "vers:unknown/\u003cv10.21.0",
"product_id": "CSAFPID-2631802"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V10"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631803"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V10.12"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631804"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V10.18"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-2631805"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V10.6"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003c*",
"product": {
"name": "vers:unknown/\u003c*",
"product_id": "CSAFPID-1296837"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V8"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv9.24.34",
"product": {
"name": "vers:unknown/\u003cv9.24.34",
"product_id": "CSAFPID-2631806"
}
}
],
"category": "product_name",
"name": "Mendix Runtime V9"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21658",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"notes": [
{
"category": "other",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "other",
"text": "Race Condition Enabling Link Following",
"title": "CWE-363"
},
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-21658",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-21658.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2022-21658"
},
{
"cve": "CVE-2023-2975",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "other",
"text": "Improper Authentication",
"title": "CWE-287"
},
{
"category": "other",
"text": "Improper Validation of Integrity Check Value",
"title": "CWE-354"
},
{
"category": "other",
"text": "Use of a Broken or Risky Cryptographic Algorithm",
"title": "CWE-327"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-2975",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2975.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-2975"
},
{
"cve": "CVE-2023-3446",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
},
{
"category": "other",
"text": "Unchecked Input for Loop Condition",
"title": "CWE-606"
},
{
"category": "other",
"text": "Use of a Cryptographic Primitive with a Risky Implementation",
"title": "CWE-1240"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-3446",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3446.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-3817",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Excessive Iteration",
"title": "CWE-834"
},
{
"category": "other",
"text": "Unchecked Input for Loop Condition",
"title": "CWE-606"
},
{
"category": "other",
"text": "Use of a Cryptographic Primitive with a Risky Implementation",
"title": "CWE-1240"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-3817",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3817.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-3817"
},
{
"cve": "CVE-2023-4807",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Expected Behavior Violation",
"title": "CWE-440"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-4807",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-4807.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-4807"
},
{
"cve": "CVE-2023-5363",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Incorrect Provision of Specified Functionality",
"title": "CWE-684"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-5363",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5363.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-5678",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"notes": [
{
"category": "other",
"text": "Improper Check for Unusual or Exceptional Conditions",
"title": "CWE-754"
},
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "other",
"text": "Unchecked Input for Loop Condition",
"title": "CWE-606"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-5678",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json"
}
],
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-7104",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-7104",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-7104.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2023-7104"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-420",
"name": "Unprotected Alternate Channel"
},
"notes": [
{
"category": "other",
"text": "Unprotected Alternate Channel",
"title": "CWE-420"
},
{
"category": "other",
"text": "Cleartext Transmission of Sensitive Information",
"title": "CWE-319"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0056",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0056.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-0056"
},
{
"cve": "CVE-2024-0232",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0232",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0232.json"
}
],
"title": "CVE-2024-0232"
},
{
"cve": "CVE-2024-0727",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0727",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0727.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-5535",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "other",
"text": "Dependency on Vulnerable Third-Party Component",
"title": "CWE-1395"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-5535",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5535.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-5535"
},
{
"cve": "CVE-2024-9143",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-9143",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json"
}
],
"title": "CVE-2024-9143"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-21319",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21319.json"
}
],
"title": "CVE-2024-21319"
},
{
"cve": "CVE-2024-23814",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-23814",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23814.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-23814"
},
{
"cve": "CVE-2024-30105",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-30105",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-30105.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-30105"
},
{
"cve": "CVE-2024-41788",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41788",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41788.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41788"
},
{
"cve": "CVE-2024-41789",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41789",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41789.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41789"
},
{
"cve": "CVE-2024-41790",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41790",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41790.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41790"
},
{
"cve": "CVE-2024-41791",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41791",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41791.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41791"
},
{
"cve": "CVE-2024-41792",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41792",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41792.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41792"
},
{
"cve": "CVE-2024-41793",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:H/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41793",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41793.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41793"
},
{
"cve": "CVE-2024-41794",
"cwe": {
"id": "CWE-798",
"name": "Use of Hard-coded Credentials"
},
"notes": [
{
"category": "other",
"text": "Use of Hard-coded Credentials",
"title": "CWE-798"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41794",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41794.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41794"
},
{
"cve": "CVE-2024-41795",
"cwe": {
"id": "CWE-352",
"name": "Cross-Site Request Forgery (CSRF)"
},
"notes": [
{
"category": "other",
"text": "Cross-Site Request Forgery (CSRF)",
"title": "CWE-352"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41795",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41795.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41795"
},
{
"cve": "CVE-2024-41796",
"cwe": {
"id": "CWE-620",
"name": "Unverified Password Change"
},
"notes": [
{
"category": "other",
"text": "Unverified Password Change",
"title": "CWE-620"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41796",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41796.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-41796"
},
{
"cve": "CVE-2024-54091",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-54091",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54091.json"
}
],
"title": "CVE-2024-54091"
},
{
"cve": "CVE-2024-54092",
"cwe": {
"id": "CWE-1390",
"name": "Weak Authentication"
},
"notes": [
{
"category": "other",
"text": "Weak Authentication",
"title": "CWE-1390"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-54092",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54092.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2024-54092"
},
{
"cve": "CVE-2025-30280",
"cwe": {
"id": "CWE-204",
"name": "Observable Response Discrepancy"
},
"notes": [
{
"category": "other",
"text": "Observable Response Discrepancy",
"title": "CWE-204"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30280",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30280.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-30280"
},
{
"cve": "CVE-2025-1097",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "External Control of System or Configuration Setting",
"title": "CWE-15"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-1097",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-1097.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-1097"
},
{
"cve": "CVE-2025-24514",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "External Control of System or Configuration Setting",
"title": "CWE-15"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24514",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24514.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-24514"
},
{
"cve": "CVE-2025-24513",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24513",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24513.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-24513"
},
{
"cve": "CVE-2025-1974",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"notes": [
{
"category": "other",
"text": "Improper Isolation or Compartmentalization",
"title": "CWE-653"
},
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-1974",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-1974.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-1974"
},
{
"cve": "CVE-2025-1098",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "External Control of System or Configuration Setting",
"title": "CWE-15"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-1098",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-1098.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-1098"
},
{
"cve": "CVE-2025-29999",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"notes": [
{
"category": "other",
"text": "Improper Privilege Management",
"title": "CWE-269"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-29999",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-29999.json"
}
],
"title": "CVE-2025-29999"
},
{
"cve": "CVE-2025-30000",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30000",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30000.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2631845",
"CSAFPID-2631844",
"CSAFPID-2631843",
"CSAFPID-2631842",
"CSAFPID-2631841",
"CSAFPID-2631840",
"CSAFPID-2631839",
"CSAFPID-2631838",
"CSAFPID-2631837",
"CSAFPID-2631836",
"CSAFPID-2631835",
"CSAFPID-2631900",
"CSAFPID-2632341",
"CSAFPID-2632342",
"CSAFPID-2632343",
"CSAFPID-2631790",
"CSAFPID-2632460",
"CSAFPID-2632459",
"CSAFPID-2631854",
"CSAFPID-2631855",
"CSAFPID-2632083",
"CSAFPID-1296722",
"CSAFPID-2631923",
"CSAFPID-1296723",
"CSAFPID-2631924",
"CSAFPID-2631925",
"CSAFPID-2631926",
"CSAFPID-2631927",
"CSAFPID-2631928",
"CSAFPID-2631929",
"CSAFPID-2631932",
"CSAFPID-2631933",
"CSAFPID-2631934",
"CSAFPID-2631935",
"CSAFPID-1765658",
"CSAFPID-1765659",
"CSAFPID-2631856",
"CSAFPID-2631858",
"CSAFPID-2631860",
"CSAFPID-2631862",
"CSAFPID-1765660",
"CSAFPID-2631936",
"CSAFPID-2631937",
"CSAFPID-2631938",
"CSAFPID-2631939",
"CSAFPID-2631940",
"CSAFPID-2631920",
"CSAFPID-2631921",
"CSAFPID-2631922",
"CSAFPID-2631967",
"CSAFPID-2631968",
"CSAFPID-2631969",
"CSAFPID-2632004",
"CSAFPID-2632005",
"CSAFPID-2632006",
"CSAFPID-2632007",
"CSAFPID-2632008",
"CSAFPID-2631966",
"CSAFPID-1765690",
"CSAFPID-1765691",
"CSAFPID-2459039",
"CSAFPID-2631970",
"CSAFPID-2631971",
"CSAFPID-2631972",
"CSAFPID-2631973",
"CSAFPID-2631974",
"CSAFPID-2631975",
"CSAFPID-1765700",
"CSAFPID-1765701",
"CSAFPID-2631976",
"CSAFPID-2631977",
"CSAFPID-1296980",
"CSAFPID-2631978",
"CSAFPID-2631979",
"CSAFPID-2631980",
"CSAFPID-2631981",
"CSAFPID-2631982",
"CSAFPID-2631983",
"CSAFPID-2631984",
"CSAFPID-2631985",
"CSAFPID-2632402",
"CSAFPID-2631802",
"CSAFPID-2631803",
"CSAFPID-2631804",
"CSAFPID-2631805",
"CSAFPID-1296837",
"CSAFPID-2631806",
"CSAFPID-1211926",
"CSAFPID-2619361",
"CSAFPID-1209122"
]
}
],
"title": "CVE-2025-30000"
}
]
}
gsd-2024-21319
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Microsoft Identity Denial of service vulnerability
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2024-21319",
"id": "GSD-2024-21319"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-21319"
],
"details": "Microsoft Identity Denial of service vulnerability",
"id": "GSD-2024-21319",
"modified": "2023-12-13T01:21:42.745926Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2024-21319",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": ".NET 6.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "6.0.0",
"version_value": "6.0.26"
}
]
}
},
{
"product_name": "Microsoft Visual Studio 2022 version 17.2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "17.2.0",
"version_value": "17.2.23"
}
]
}
},
{
"product_name": "Microsoft Visual Studio 2022 version 17.6",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "17.6.0",
"version_value": "17.6.11"
}
]
}
},
{
"product_name": "Microsoft Visual Studio 2022 version 17.4",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "17.4.0",
"version_value": "17.4.15"
}
]
}
},
{
"product_name": "Microsoft Visual Studio 2022 version 17.8",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "17.8.0",
"version_value": "17.8.4"
}
]
}
},
{
"product_name": ".NET 7.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "7.0.0",
"version_value": "7.0.15"
}
]
}
},
{
"product_name": ".NET 8.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "1.0.0",
"version_value": "8.0.1"
}
]
}
},
{
"product_name": "Microsoft Identity Model v6.0.0 forNuget",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "6.34.0"
}
]
}
},
{
"product_name": "Microsoft Identity Model v7.0.0 for Nuget",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "7.1.2"
}
]
}
},
{
"product_name": "Microsoft Identity Model v6.0.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "6.34.0"
}
]
}
},
{
"product_name": "Microsoft Identity Model v5.0.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "5.7.0"
}
]
}
},
{
"product_name": "Microsoft Identity Model v7.0.0",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "7.1.2"
}
]
}
},
{
"product_name": "Microsoft Identity Model v5.0.0 for Nuget",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "5.7.0"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Microsoft Identity Denial of service vulnerability"
}
]
},
"impact": {
"cvss": [
{
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-20",
"lang": "eng",
"value": "CWE-20: Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319",
"refsource": "MISC",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "498DF6C9-EC7C-4A4F-A188-B22E82FD6540",
"versionEndExcluding": "6.0.26",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3CE00AC7-D405-4567-8CB1-C3ED7E2925C6",
"versionEndExcluding": "7.0.15",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8583992E-20C5-4437-ACFE-22FEBD539E4C",
"versionEndExcluding": "8.0.1",
"versionStartIncluding": "8.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "F39C475D-FDCE-4DE1-B936-01D268FD7645",
"versionEndExcluding": "5.7.0",
"versionStartIncluding": "5.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "A286ABF0-E7B7-44E0-9EF1-0226BDD5338A",
"versionEndExcluding": "6.34.0",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:identity_model:*:*:*:*:*:.net:*:*",
"matchCriteriaId": "B12074D2-B6C2-4797-BCE8-27A5E6314FB1",
"versionEndExcluding": "7.1.2",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "42B33777-27CB-45CC-A95A-3F4369DBB31D",
"versionEndExcluding": "17.2.23",
"versionStartIncluding": "17.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E578915C-4563-4767-A1F9-7C0ADF58BDA6",
"versionEndExcluding": "17.4.15",
"versionStartIncluding": "17.4.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AB1E1DB4-BE9A-48E9-808D-E239CFDB26BA",
"versionEndExcluding": "17.6.11",
"versionStartIncluding": "17.6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1A6D3ECE-ED4D-4778-900F-4D4E1D05F00E",
"versionEndExcluding": "17.8.4",
"versionStartIncluding": "17.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Identity Denial of service vulnerability"
},
{
"lang": "es",
"value": "Vulnerabilidad de denegaci\u00f3n de servicio de identidad de Microsoft"
}
],
"id": "CVE-2024-21319",
"lastModified": "2024-04-11T20:15:18.893",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.3,
"impactScore": 4.0,
"source": "secure@microsoft.com",
"type": "Primary"
}
]
},
"published": "2024-01-09T19:15:12.070",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
}
]
}
}
}
}
wid-sec-w-2024-0039
Vulnerability from csaf_certbund
Published
2024-01-09 23:00
Modified
2024-02-25 23:00
Summary
Microsoft Developer Tools: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.
Microsoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.
Angriff
Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Developer Tools ausnutzen, um seine Privilegien zu erhöhen, einen Denial of Service Zustand hervorzurufen oder Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausf\u00fchrung von Softwareanwendungen und Webdiensten erm\u00f6glicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. f\u00fcr die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung f\u00fcr Hochsprachen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Developer Tools ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial of Service Zustand hervorzurufen oder Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0039 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0039.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0039 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0039"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2024-01-09",
"url": "https://msrc.microsoft.com/update-guide"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0158 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0158"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0150 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0150"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0157 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0157"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0151 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0151"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0152 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0152"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0156 vom 2024-01-11",
"url": "https://access.redhat.com/errata/RHSA-2024:0156"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6578-1 vom 2024-01-11",
"url": "https://ubuntu.com/security/notices/USN-6578-1"
},
{
"category": "external",
"summary": "MDSec Research vom 2024-01-11",
"url": "https://www.mdsec.co.uk/2024/01/cve-2024-20656-local-privilege-escalation-in-vsstandardcollectorservice150-service/"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0156 vom 2024-01-13",
"url": "http://linux.oracle.com/errata/ELSA-2024-0156.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:0255 vom 2024-01-16",
"url": "https://access.redhat.com/errata/RHSA-2024:0255"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0151 vom 2024-01-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-0151.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0152 vom 2024-01-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-0152.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0157 vom 2024-01-18",
"url": "https://linux.oracle.com/errata/ELSA-2024-0157.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0158 vom 2024-01-19",
"url": "http://linux.oracle.com/errata/ELSA-2024-0158.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-0150 vom 2024-02-21",
"url": "https://linux.oracle.com/errata/ELSA-2024-0150.html"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2024-301 vom 2024-02-26",
"url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2024/01.html"
}
],
"source_lang": "en-US",
"title": "Microsoft Developer Tools: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-02-25T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:03:25.029+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0039",
"initial_release_date": "2024-01-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-01-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-01-10T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-01-11T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-01-14T23:00:00.000+00:00",
"number": "4",
"summary": "PoC aufgenommen"
},
{
"date": "2024-01-15T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-01-17T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-01-18T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-02-20T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-02-25T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von HITACHI aufgenommen"
}
],
"status": "final",
"version": "9"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Hitachi Storage",
"product": {
"name": "Hitachi Storage",
"product_id": "T009295",
"product_identification_helper": {
"cpe": "cpe:/h:hitachi:storage:-"
}
}
}
],
"category": "vendor",
"name": "Hitachi"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "4.8.1",
"product": {
"name": "Microsoft .NET Framework 4.8.1",
"product_id": "1273212",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.8.1"
}
}
},
{
"category": "product_version",
"name": "4.7",
"product": {
"name": "Microsoft .NET Framework 4.7",
"product_id": "432554",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.7"
}
}
},
{
"category": "product_version",
"name": "4.7.1",
"product": {
"name": "Microsoft .NET Framework 4.7.1",
"product_id": "432555",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.7.1"
}
}
},
{
"category": "product_version",
"name": "4.7.2",
"product": {
"name": "Microsoft .NET Framework 4.7.2",
"product_id": "432556",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.7.2"
}
}
},
{
"category": "product_version",
"name": "4.8",
"product": {
"name": "Microsoft .NET Framework 4.8",
"product_id": "432557",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.8"
}
}
},
{
"category": "product_version",
"name": "3.5",
"product": {
"name": "Microsoft .NET Framework 3.5",
"product_id": "834793",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:3.5:-"
}
}
},
{
"category": "product_version",
"name": "2.0 SP2",
"product": {
"name": "Microsoft .NET Framework 2.0 SP2",
"product_id": "T021515",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:2.0_sp2"
}
}
},
{
"category": "product_version",
"name": "6",
"product": {
"name": "Microsoft .NET Framework 6.0",
"product_id": "T021995",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:6.0"
}
}
},
{
"category": "product_version",
"name": "3.0 SP2",
"product": {
"name": "Microsoft .NET Framework 3.0 SP2",
"product_id": "T024564",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:3.0_sp2"
}
}
},
{
"category": "product_version",
"name": "7",
"product": {
"name": "Microsoft .NET Framework 7.0",
"product_id": "T029132",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:7.0"
}
}
},
{
"category": "product_version",
"name": "4.6.2",
"product": {
"name": "Microsoft .NET Framework 4.6.2",
"product_id": "T031928",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:4.6.2"
}
}
},
{
"category": "product_version",
"name": "8",
"product": {
"name": "Microsoft .NET Framework 8.0",
"product_id": "T031969",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:.net_framework:8.0"
}
}
}
],
"category": "product_name",
"name": ".NET Framework"
},
{
"branches": [
{
"category": "product_version",
"name": "Update 3",
"product": {
"name": "Microsoft Visual Studio 2015 Update 3",
"product_id": "T014511",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:visual_studio_2015:update_3"
}
}
}
],
"category": "product_name",
"name": "Visual Studio 2015"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 15.9 (includes 15.0 - 15.8)",
"product": {
"name": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
"product_id": "T015502"
}
}
],
"category": "product_name",
"name": "Visual Studio 2017"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 16.11 (includes 16.0 - 16.10)",
"product": {
"name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
"product_id": "T020376"
}
}
],
"category": "product_name",
"name": "Visual Studio 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 17.2",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.2",
"product_id": "T028102"
}
},
{
"category": "product_version_range",
"name": "version 17.4",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.4",
"product_id": "T028103"
}
},
{
"category": "product_version_range",
"name": "version 17.6",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.6",
"product_id": "T028105"
}
},
{
"category": "product_version_range",
"name": "version 17.8",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.8",
"product_id": "T029805"
}
}
],
"category": "product_name",
"name": "Visual Studio 2022"
}
],
"category": "vendor",
"name": "Microsoft"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21319",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-21319"
},
{
"cve": "CVE-2024-21312",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-21312"
},
{
"cve": "CVE-2024-20672",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-20672"
},
{
"cve": "CVE-2024-20656",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-20656"
},
{
"cve": "CVE-2024-0057",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-0057"
},
{
"cve": "CVE-2024-0056",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in den Microsoft Developer Tools. Die Fehler bestehen aufgrund der Verwendung eines b\u00f6sartigen JSON Web Encryption (JWE)-Tokens mit einer hohen Komprimierungsrate, der Verwendung eines speziell pr\u00e4parierten X.509-Zertifikats, das absichtlich einen Fehler im Build einf\u00fchrt oder verursacht, eines Machine-in-the-Middle (MITM)-Angriffs und anderer Schwachstellen, die noch nicht im Detail beschrieben sind. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, einen Denial-of-Service-Zustand zu verursachen und Sicherheitsma\u00dfnahmen zu umgehen. Die erfolgreiche Ausnutzung einer dieser Schwachstellen erfordert erh\u00f6hte Rechte."
}
],
"product_status": {
"known_affected": [
"432555",
"432556",
"T029132",
"432554",
"67646",
"432557",
"T014511",
"T015502",
"T004914",
"834793",
"T021995",
"T020376",
"1273212",
"T021515",
"T029805",
"T000126",
"T024564",
"T009295",
"T028105",
"T031969",
"T028103",
"T031928",
"T028102"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-0056"
}
]
}
wid-sec-w-2024-0040
Vulnerability from csaf_certbund
Published
2024-01-09 23:00
Modified
2024-01-09 23:00
Summary
Microsoft Azure: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Azure ist eine Cloud Computing-Plattform von Microsoft.
Angriff
Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Microsoft Azure ausnutzen, um beliebigen Programmcode auszuführen und einen Denial of Service Zustand zu verursachen.
Betroffene Betriebssysteme
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Azure ist eine Cloud Computing-Plattform von Microsoft.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Microsoft Azure ausnutzen, um beliebigen Programmcode auszuf\u00fchren und einen Denial of Service Zustand zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0040 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0040.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0040 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0040"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2024-01-09",
"url": "https://msrc.microsoft.com/update-guide"
}
],
"source_lang": "en-US",
"title": "Microsoft Azure: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-01-09T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:03:25.391+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0040",
"initial_release_date": "2024-01-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-01-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Microsoft Azure",
"product": {
"name": "Microsoft Azure",
"product_id": "T027175",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:azure:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Azure Storage Mover Agent",
"product": {
"name": "Microsoft Azure Storage Mover Agent",
"product_id": "T031922",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:azure:storage_mover_agent"
}
}
}
],
"category": "product_name",
"name": "Azure"
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21319",
"notes": [
{
"category": "description",
"text": "In Microsoft Azure existieren mehrere Schwachstellen. Es existieren mehrere Schwachstellen in Microsoft Azure. Die Fehler bestehen in der Komponente Storage Mover Agent. Eine der Schwachstellen ist nicht im Detail beschrieben. Die andere wiederum wird ausgenutzt, indem ein b\u00f6sartiges JSON Web Encryption (JWE) Token mit einer hohen Kompressionsrate erstellt wird. Ein entfernter, authentisierter Angreifer mit bestimmten Rechten kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren und einen Denial-of-Service-Zustand zu verursachen. Angreifer ben\u00f6tigen die ARMID, die UUID oder die IDP (Entra ID) des installierten Agenten, um die Schwachstellen erfolgreich auszunutzen."
}
],
"product_status": {
"known_affected": [
"T027175",
"T031922"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-21319"
},
{
"cve": "CVE-2024-20676",
"notes": [
{
"category": "description",
"text": "In Microsoft Azure existieren mehrere Schwachstellen. Es existieren mehrere Schwachstellen in Microsoft Azure. Die Fehler bestehen in der Komponente Storage Mover Agent. Eine der Schwachstellen ist nicht im Detail beschrieben. Die andere wiederum wird ausgenutzt, indem ein b\u00f6sartiges JSON Web Encryption (JWE) Token mit einer hohen Kompressionsrate erstellt wird. Ein entfernter, authentisierter Angreifer mit bestimmten Rechten kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren und einen Denial-of-Service-Zustand zu verursachen. Angreifer ben\u00f6tigen die ARMID, die UUID oder die IDP (Entra ID) des installierten Agenten, um die Schwachstellen erfolgreich auszunutzen."
}
],
"product_status": {
"known_affected": [
"T027175",
"T031922"
]
},
"release_date": "2024-01-09T23:00:00.000+00:00",
"title": "CVE-2024-20676"
}
]
}
ghsa-59j7-ghrg-fj52
Vulnerability from github
Published
2024-01-09 19:35
Modified
2025-06-04 20:19
Severity ?
VLAI Severity ?
Summary
Microsoft ASP.NET Core project templates vulnerable to denial of service
Details
A Denial of Service vulnerability exists in ASP.NET Core project templates which utilize JWT-based authentication tokens. This vulnerability allows an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests.
Announcement
Announcement for this issue can be found at https://github.com/dotnet/announcements/issues/290
Mitigation factors
This impacts only .NET Core-based projects that were created using any version of project templates listed in affected software. Other project templates e.g., console applications, MAUI applications, Windows Forms or WPF applications, are not affected.
Affected software
This impacts only .NET Core-based projects that were created using any version of the below project templates.
- ASP.NET Core Web App (Model-View-Controller)
- ASP.NET Core Web API
- ASP.NET Core Web App (Razor Pages)
- Blazor Server App
- Blazor WebAssembly App
Advisory FAQ
How do I know if I am affected?
If you are you using project templates listed in affected software, you may be exposed to the vulnerability.
How do I fix the issue?
For existing projects:
If you ever created any of these projects via the dotnet new command or via Visual Studio's File -> New Project gesture, and if you enabled federated authentication at project creation time, your project may be vulnerable. To remediate the vulnerability, use your package manager to update any references you may have to the Microsoft.AspNetCore.Authentication.JwtBearer, Microsoft.AspNetCore.Authentication.OpenIdConnect, and Microsoft.IdentityModel.JsonWebTokens packages to their respective latest versions. - Microsoft.AspNetCore.Authentication.JwtBearer - Microsoft.AspNetCore.Authentication.OpenIdConnect
If your project does not reference any of those three packages, you are not exposed to this vulnerability.
For new projects:
To remediate this issue please update to the latest SDK listed below. Simply installing the SDK update is not sufficient to remediate projects already-created / already-deployed projects which existed prior to this update being released.
- To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.
- If you are using one of the affected packages, please update to the patched version listed above.
- If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the
dotnet --infocommand. You will see output like the following;
``` .NET Core SDK (reflecting any global.json):
Version: 7.0.200 Commit: 8473146e7d
Runtime Environment:
OS Name: Windows OS Version: 10.0.18363 OS Platform: Windows RID: win10-x64 Base Path: C:\Program Files\dotnet\sdk\7.0.300\
Host (useful for support):
Version: 76.0.5 Commit: 8473146e7d
.NET Core SDKs installed:
7.0.200 [C:\Program Files\dotnet\sdk]
.NET Core runtimes installed:
Microsoft.AspNetCore.App 7.0.5 [C:\Program Files\dotnet\shared\Microsoft.AspNetCore.App] Microsoft.NETCore.App 7.0.5 [C:\Program Files\dotnet\shared\Microsoft.NETCore.App] Microsoft.WindowsDesktop.App 7.0.5 [C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App]
To install additional .NET Core runtimes or SDKs: https://aka.ms/dotnet-download ```
- If you're using .NET 8.0, you should download and install .NET 8.0.101 SDK (for Visual Studio 2022 v17.8) from https://dotnet.microsoft.com/download/dotnet-core/8.0.
- If you're using .NET 7.0, you should download and install .NET SDK 7.0.115 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.
- If you're using .NET 6.0, you should download and install .NET SDK 6.0.321 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.
.NET 6.0, .NET 7.0, .NET 8.0 updates are also available from Microsoft Update. To access this either type "Check for updates" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.
Once you have installed the updated runtime or SDK, restart your apps for the update to take effect.
Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.
Other Information
Reporting Security Issues
If you have found a potential security issue in .NET 8.0 or .NET 7.0 or .NET 6.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at https://aka.ms/corebounty.
Support
You can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Acknowledgement
Morgan Brown, Microsoft Corp.
{
"affected": [
{
"package": {
"ecosystem": "NuGet",
"name": "System.IdentityModel.Tokens.Jwt"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "5.7.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "System.IdentityModel.Tokens.Jwt"
},
"ranges": [
{
"events": [
{
"introduced": "6.5.0"
},
{
"fixed": "6.34.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "System.IdentityModel.Tokens.Jwt"
},
"ranges": [
{
"events": [
{
"introduced": "7.0.0-preview"
},
{
"fixed": "7.1.2"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Microsoft.IdentityModel.JsonWebTokens"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "5.7.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Microsoft.IdentityModel.JsonWebTokens"
},
"ranges": [
{
"events": [
{
"introduced": "6.5.0"
},
{
"fixed": "6.34.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Microsoft.IdentityModel.JsonWebTokens"
},
"ranges": [
{
"events": [
{
"introduced": "7.0.0-preview"
},
{
"fixed": "7.1.2"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-21319"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": true,
"github_reviewed_at": "2024-01-09T19:35:02Z",
"nvd_published_at": null,
"severity": "MODERATE"
},
"details": "A Denial of Service vulnerability exists in ASP.NET Core project templates which utilize JWT-based authentication tokens. This vulnerability allows an unauthenticated client to consume arbitrarily large amounts of server memory, potentially triggering an out-of-memory condition on the server and making the server no longer able to respond to legitimate requests. \n\n## Announcement\n\nAnnouncement for this issue can be found at https://github.com/dotnet/announcements/issues/290\n\n### Mitigation factors\n\nThis impacts only .NET Core-based projects that were created using any version of project templates listed in affected software. \nOther project templates e.g., console applications, MAUI applications, Windows Forms or WPF applications, are not affected.\n\n## Affected software\n\nThis impacts only .NET Core-based projects that were created using any version of the below project templates.\n\n-\tASP.NET Core Web App (Model-View-Controller)\n-\tASP.NET Core Web API\n-\tASP.NET Core Web App (Razor Pages)\n-\tBlazor Server App\n-\tBlazor WebAssembly App\n\n## Advisory FAQ\n\n### How do I know if I am affected?\n\nIf you are you using project templates listed in affected software, you may be exposed to the vulnerability.\n\n### How do I fix the issue?\n\n#### For existing projects:\nIf you ever created any of these projects via the dotnet new command or via Visual Studio\u0027s File -\u003e New Project gesture, and if you enabled federated authentication at project creation time, your project may be vulnerable. To remediate the vulnerability, use your package manager to update any references you may have to the Microsoft.AspNetCore.Authentication.JwtBearer, Microsoft.AspNetCore.Authentication.OpenIdConnect, and Microsoft.IdentityModel.JsonWebTokens packages to their respective latest versions. \n- [Microsoft.AspNetCore.Authentication.JwtBearer](https://www.nuget.org/packages/Microsoft.AspNetCore.Authentication.JwtBearer/) \n- [Microsoft.AspNetCore.Authentication.OpenIdConnect](https://www.nuget.org/packages/Microsoft.AspNetCore.Authentication.OpenIdConnect/) \n\nIf your project does not reference any of those three packages, you are not exposed to this vulnerability.\n\n#### For new projects:\nTo remediate this issue please update to the latest SDK listed below. Simply installing the SDK update is not sufficient to remediate projects already-created / already-deployed projects which existed prior to this update being released.\n\n* To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.\n* If you are using one of the affected packages, please update to the patched version listed above.\n* If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the `dotnet --info` command. You will see output like the following;\n\n```\n.NET Core SDK (reflecting any global.json):\n\n Version: 7.0.200\n Commit: 8473146e7d\n\nRuntime Environment:\n\n OS Name: Windows\n OS Version: 10.0.18363\n OS Platform: Windows\n RID: win10-x64\n Base Path: C:\\Program Files\\dotnet\\sdk\\7.0.300\\\n\nHost (useful for support):\n\n Version: 76.0.5\n Commit: 8473146e7d\n\n.NET Core SDKs installed:\n\n 7.0.200 [C:\\Program Files\\dotnet\\sdk]\n\n.NET Core runtimes installed:\n\n Microsoft.AspNetCore.App 7.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.AspNetCore.App]\n Microsoft.NETCore.App 7.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.NETCore.App]\n Microsoft.WindowsDesktop.App 7.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.WindowsDesktop.App]\n\nTo install additional .NET Core runtimes or SDKs:\n https://aka.ms/dotnet-download\n```\n\n* If you\u0027re using .NET 8.0, you should download and install .NET 8.0.101 SDK (for Visual Studio 2022 v17.8) from https://dotnet.microsoft.com/download/dotnet-core/8.0.\n* If you\u0027re using .NET 7.0, you should download and install .NET SDK 7.0.115 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.\n* If you\u0027re using .NET 6.0, you should download and install .NET SDK 6.0.321 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.\n\n.NET 6.0, .NET 7.0, .NET 8.0 updates are also available from Microsoft Update. To access this either type \"Check for updates\" in your Windows search, or open Settings, choose Update \u0026 Security and then click Check for Updates.\n\nOnce you have installed the updated runtime or SDK, restart your apps for the update to take effect.\n\nAdditionally, if you\u0027ve deployed [self-contained applications](https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd) targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.\n\n## Other Information\n\n### Reporting Security Issues\n\nIf you have found a potential security issue in .NET 8.0 or .NET 7.0 or .NET 6.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core \u0026 .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at \u003chttps://aka.ms/corebounty\u003e.\n\n### Support\n\nYou can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.\n\n### Disclaimer\n\nThe information provided in this advisory is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\n\n### Acknowledgement\n\nMorgan Brown, Microsoft Corp.",
"id": "GHSA-59j7-ghrg-fj52",
"modified": "2025-06-04T20:19:00Z",
"published": "2024-01-09T19:35:02Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/security/advisories/GHSA-8g9c-28fc-mcx2"
},
{
"type": "WEB",
"url": "https://github.com/dotnet/aspnetcore/security/advisories/GHSA-59j7-ghrg-fj52"
},
{
"type": "WEB",
"url": "https://github.com/dotnet/announcements/issues/290"
},
{
"type": "PACKAGE",
"url": "https://github.com/dotnet/aspnetcore"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "Microsoft ASP.NET Core project templates vulnerable to denial of service"
}
ssa-277137
Vulnerability from csaf_siemens
Published
2025-04-08 00:00
Modified
2025-04-08 00:00
Summary
SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700
Notes
Summary
SIDIS Prime before V4.0.700 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, Boost C++ Libraries and several Microsoft components as described below.
Siemens has released a new version of SIDIS Prime and recommends to update to the latest version.
General Recommendations
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SIDIS Prime before V4.0.700 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, Boost C++ Libraries and several Microsoft components as described below.\n\nSiemens has released a new version of SIDIS Prime and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-277137.html"
},
{
"category": "self",
"summary": "SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-277137.json"
}
],
"title": "SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700",
"tracking": {
"current_release_date": "2025-04-08T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-277137",
"initial_release_date": "2025-04-08T00:00:00Z",
"revision_history": [
{
"date": "2025-04-08T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "interim",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV4.0.700",
"product": {
"name": "SIDIS Prime",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "SIDIS Prime"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21658",
"cwe": {
"id": "CWE-363",
"name": "Race Condition Enabling Link Following"
},
"notes": [
{
"category": "summary",
"text": "Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the `std::fs::remove_dir_all` standard library function is vulnerable a race condition enabling symlink following (CWE-363). An attacker could use this security issue to trick a privileged program into deleting files and directories the attacker couldn\u0027t otherwise access or delete. Rust 1.0.0 through Rust 1.58.0 is affected by this vulnerability with 1.58.1 containing a patch. Note that the following build targets don\u0027t have usable APIs to properly mitigate the attack, and are thus still vulnerable even with a patched toolchain: macOS before version 10.10 (Yosemite) and REDOX. We recommend everyone to update to Rust 1.58.1 as soon as possible, especially people developing programs expected to run in privileged contexts (including system daemons and setuid binaries), as those have the highest risk of being affected by this. Note that adding checks in your codebase before calling remove_dir_all will not mitigate the vulnerability, as they would also be vulnerable to race conditions like remove_dir_all itself. The existing mitigation is working as intended outside of race conditions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-21658"
},
{
"cve": "CVE-2023-2975",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenticated as a consequence. Impact summary: Applications that use the AES-SIV algorithm and want to authenticate empty data entries as associated data can be mislead by removing adding or reordering such empty entries as these are ignored by the OpenSSL implementation. We are currently unaware of any such applications. The AES-SIV algorithm allows for authentication of multiple associated data entries along with the encryption. To authenticate empty data the application has to call EVP_EncryptUpdate() (or EVP_CipherUpdate()) with NULL pointer as the output buffer and 0 as the input buffer length. The AES-SIV implementation in OpenSSL just returns success for such a call instead of performing the associated data authentication operation. The empty data thus will not be authenticated. As this issue does not affect non-empty associated data authentication and we expect it to be rare for an application to use empty associated data entries this is qualified as Low severity issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-2975"
},
{
"cve": "CVE-2023-3446",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus (\u0027p\u0027 parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the \u0027-check\u0027 option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-4807",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X86_64 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses the OpenSSL library an attacker can influence whether the POLY1305 MAC algorithm is used, the application state might be corrupted with various application dependent consequences. The POLY1305 MAC (message authentication code) implementation in OpenSSL does not save the contents of non-volatile XMM registers on Windows 64 platform when calculating the MAC of data larger than 64 bytes. Before returning to the caller all the XMM registers are set to zero rather than restoring their previous content. The vulnerable code is used only on newer x86_64 processors supporting the AVX512-IFMA instructions. The consequences of this kind of internal application state corruption can be various - from no consequences, if the calling application does not depend on the contents of non-volatile XMM registers at all, to the worst consequences, where the attacker could get complete control of the application process. However given the contents of the registers are just zeroized so the attacker cannot put arbitrary values inside, the most likely consequence, if any, would be an incorrect result of some application dependent calculations or a crash leading to a denial of service. The POLY1305 MAC algorithm is most frequently used as part of the CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) algorithm. The most common usage of this AEAD cipher is with TLS protocol versions 1.2 and 1.3 and a malicious client can influence whether this AEAD cipher is used by the server. This implies that server applications using OpenSSL can be potentially impacted. However we are currently not aware of any concrete application that would be affected by this issue therefore we consider this a Low severity security issue. As a workaround the AVX512-IFMA instructions support can be disabled at runtime by setting the environment variable OPENSSL_ia32cap: OPENSSL_ia32cap=:~0x200000 The FIPS provider is not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-4807"
},
{
"cve": "CVE-2023-5363",
"cwe": {
"id": "CWE-684",
"name": "Incorrect Provision of Specified Functionality"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in loss of confidentiality for some cipher modes. When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after the key and IV have been established. Any alterations to the key length, via the \"keylen\" parameter or the IV length, via the \"ivlen\" parameter, within the OSSL_PARAM array will not take effect as intended, potentially causing truncation or overreading of these values. The following ciphers and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB. For the CCM, GCM and OCB cipher modes, truncation of the IV can result in loss of confidentiality. For example, when following NIST\u0027s SP 800-38D section 8.2.1 guidance for constructing a deterministic IV for AES in GCM mode, truncation of the counter portion could lead to IV reuse. Both truncations and overruns of the key and overruns of the IV will produce incorrect results and could, in some cases, trigger a memory exception. However, these issues are not currently assessed as security critical. Changing the key and/or IV lengths is not considered to be a common operation and the vulnerable API was recently introduced. Furthermore it is likely that application developers will have spotted this problem during testing since decryption would fail unless both peers in the communication were similarly vulnerable. For these reasons we expect the probability of an application being vulnerable to this to be quite low. However if an application is vulnerable then this issue is considered very serious. For these reasons we have assessed this issue as Moderate severity overall. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because the issue lies outside of the FIPS provider boundary. OpenSSL 3.1 and 3.0 are vulnerable to this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-5678",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn\u0027t make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn\u0027t check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-7104",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248999.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2023-7104"
},
{
"cve": "CVE-2024-0056",
"cwe": {
"id": "CWE-319",
"name": "Cleartext Transmission of Sensitive Information"
},
"notes": [
{
"category": "summary",
"text": "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-0056"
},
{
"cve": "CVE-2024-0232",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray() function in sqlite3.c. This flaw allows a local attacker to leverage a victim to pass specially crafted malicious input to the application, potentially causing a crash and leading to a denial of service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-0232"
},
{
"cve": "CVE-2024-0727",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL does not correctly check for this case. This can lead to a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue. OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-5535",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected application beahviour or a crash. In particular this issue could result in up to 255 bytes of arbitrary private data from memory being sent to the peer leading to a loss of confidentiality. However, only applications that directly call the SSL_select_next_proto function with a 0 length list of supported client protocols are affected by this issue. This would normally never be a valid scenario and is typically not under attacker control but may occur by accident in the case of a configuration or programming error in the calling application. The OpenSSL API function SSL_select_next_proto is typically used by TLS applications that support ALPN (Application Layer Protocol Negotiation) or NPN (Next Protocol Negotiation). NPN is older, was never standardised and is deprecated in favour of ALPN. We believe that ALPN is significantly more widely deployed than NPN. The SSL_select_next_proto function accepts a list of protocols from the server and a list of protocols from the client and returns the first protocol that appears in the server list that also appears in the client list. In the case of no overlap between the two lists it returns the first item in the client list. In either case it will signal whether an overlap between the two lists was found. In the case where SSL_select_next_proto is called with a zero length client list it fails to notice this condition and returns the memory immediately following the client list pointer (and reports that there was no overlap in the lists). This function is typically called from a server side application callback for ALPN or a client side application callback for NPN. In the case of ALPN the list of protocols supplied by the client is guaranteed by libssl to never be zero in length. The list of server protocols comes from the application and should never normally be expected to be of zero length. In this case if the SSL_select_next_proto function has been called as expected (with the list supplied by the client passed in the client/client_len parameters), then the application will not be vulnerable to this issue. If the application has accidentally been configured with a zero length server list, and has accidentally passed that zero length server list in the client/client_len parameters, and has additionally failed to correctly handle a \"no overlap\" response (which would normally result in a handshake failure in ALPN) then it will be vulnerable to this problem. In the case of NPN, the protocol permits the client to opportunistically select a protocol when there is no overlap. OpenSSL returns the first client protocol in the no overlap case in support of this. The list of client protocols comes from the application and should never normally be expected to be of zero length. However if the SSL_select_next_proto function is accidentally called with a client_len of 0 then an invalid memory pointer will be returned instead. If the application uses this output as the opportunistic protocol then the loss of confidentiality will occur. This issue has been assessed as Low severity because applications are most likely to be vulnerable if they are using NPN instead of ALPN - but NPN is not widely used. It also requires an application configuration or programming error. Finally, this issue would not typically be under attacker control making active exploitation unlikely. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue. Due to the low severity of this issue we are not issuing new releases of OpenSSL at this time. The fix will be included in the next releases when they become available.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-5535"
},
{
"cve": "CVE-2024-9143",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: Use of the low-level GF(2m) elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Impact summary: Out of bound memory writes can lead to an application crash or even a possibility of a remote code execution, however, in all the protocols involving Elliptic Curve Cryptography that we\u0027re aware of, either only \"named curves\" are supported, or, if explicit curve parameters are supported, they specify an X9.62 encoding of binary (GF(2m)) curves that can\u0027t represent problematic input values. Thus the likelihood of existence of a vulnerable application is low. In particular, the X9.62 encoding is used for ECC keys in X.509 certificates, so problematic inputs cannot occur in the context of processing X.509 certificates. Any problematic use-cases would have to be using an \"exotic\" curve encoding. The affected APIs include: EC_GROUP_new_curve_GF2m(), EC_GROUP_new_from_params(), and various supporting BN_GF2m_*() functions. Applications working with \"exotic\" explicit binary (GF(2m)) curve parameters, that make it possible to represent invalid field polynomials with a zero constant term, via the above or similar APIs, may terminate abruptly as a result of reading or writing outside of array bounds. Remote code execution cannot easily be ruled out. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-9143"
},
{
"cve": "CVE-2024-21319",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Microsoft Identity Denial of service vulnerability.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-21319"
},
{
"cve": "CVE-2024-30105",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "summary",
"text": ".NET and Visual Studio Denial of Service Vulnerability",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.700 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-30105"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…