.NET 7.0 security update

2024-03-1500:00:00

linux.oracle.com

.net sdk 7.0

runtime 7.0.17

security patch

rsa pkcs#1

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0005 Low

EPSS

Percentile

16.1%

JSON

[7.0.117-1.0.1]

Update to .NET SDK 7.0.117 and Runtime 7.0.17
Port Revert 'Disable implicit rejection for RSA PKCS#1 (#95217) patch

OSVersionArchitecturePackageVersionFilename
oracle linux8srcdotnet7.0< 7.0.117-1.0.1.el8_9dotnet7.0-7.0.117-1.0.1.el8_9.src.rpm
oracle linux8srcdotnet7.0< 7.0.117-1.0.1.el8_9dotnet7.0-7.0.117-1.0.1.el8_9.src.rpm
oracle linux8aarch64aspnetcore-runtime-7.0< 7.0.17-1.0.1.el8_9aspnetcore-runtime-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64aspnetcore-targeting-pack-7.0< 7.0.17-1.0.1.el8_9aspnetcore-targeting-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-apphost-pack-7.0< 7.0.17-1.0.1.el8_9dotnet-apphost-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-hostfxr-7.0< 7.0.17-1.0.1.el8_9dotnet-hostfxr-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-runtime-7.0< 7.0.17-1.0.1.el8_9dotnet-runtime-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-sdk-7.0< 7.0.117-1.0.1.el8_9dotnet-sdk-7.0-7.0.117-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-sdk-7.0-source-built-artifacts< 7.0.117-1.0.1.el8_9dotnet-sdk-7.0-source-built-artifacts-7.0.117-1.0.1.el8_9.aarch64.rpm
oracle linux8aarch64dotnet-targeting-pack-7.0< 7.0.17-1.0.1.el8_9dotnet-targeting-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	8	src	dotnet7.0	< 7.0.117-1.0.1.el8_9	dotnet7.0-7.0.117-1.0.1.el8_9.src.rpm
oracle linux	8	src	dotnet7.0	< 7.0.117-1.0.1.el8_9	dotnet7.0-7.0.117-1.0.1.el8_9.src.rpm
oracle linux	8	aarch64	aspnetcore-runtime-7.0	< 7.0.17-1.0.1.el8_9	aspnetcore-runtime-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	aspnetcore-targeting-pack-7.0	< 7.0.17-1.0.1.el8_9	aspnetcore-targeting-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-apphost-pack-7.0	< 7.0.17-1.0.1.el8_9	dotnet-apphost-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-hostfxr-7.0	< 7.0.17-1.0.1.el8_9	dotnet-hostfxr-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-runtime-7.0	< 7.0.17-1.0.1.el8_9	dotnet-runtime-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-sdk-7.0	< 7.0.117-1.0.1.el8_9	dotnet-sdk-7.0-7.0.117-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-sdk-7.0-source-built-artifacts	< 7.0.117-1.0.1.el8_9	dotnet-sdk-7.0-source-built-artifacts-7.0.117-1.0.1.el8_9.aarch64.rpm
oracle linux	8	aarch64	dotnet-targeting-pack-7.0	< 7.0.17-1.0.1.el8_9	dotnet-targeting-pack-7.0-7.0.17-1.0.1.el8_9.aarch64.rpm