Lucene search

K
redhatRedHatRHSA-2023:4061
HistoryJul 13, 2023 - 7:30 a.m.

(RHSA-2023:4061) Important: .NET 6.0 security, bug fix, and enhancement update

2023-07-1307:30:05
access.redhat.com
14
.net framework
security update
bug fix
enhancement
race condition
cve-2023-33170

0.001 Low

EPSS

Percentile

45.7%

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

The following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (SDK 6.0.120, Runtime 6.0.20). (BZ#2219635)

Security Fix(es):

  • dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.