ALSA-2024:7867 Important: .NET 6.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35...

Microsoft .NET Framework Multiple DoS Vulnerabilities (KB5044092)

This host is missing an important security update according to Microsoft KB5044092 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft .NET Framework Multiple DoS Vulnerabilities (KB5044021)

This host is missing an important security update according to Microsoft KB5044021 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

ALSA-2024:7851 Important: .NET 6.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35...

Microsoft .NET Framework Multiple DoS Vulnerabilities (KB5044091)

This host is missing an important security update according to Microsoft KB5044090 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft .NET Framework Multiple DoS Vulnerabilities (KB5044033)

This host is missing an important security update according to Microsoft KB5044033 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Vulnerabilities fixed in Microsoft Developer Tools

Microsoft has fixed vulnerabilities in several Developer Tools. A malicious person could exploit the vulnerabilities to cause a Denial-of-Service, grant themselves elevated privileges or execute arbitrary code with the victim's privileges. Successful exploitation requires the malicious party to...

CVE-2024-43483

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability...

CVE-2024-43484

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability...

CVE-2024-43483

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability...

CVE-2024-43484

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability...

CVE-2024-43484

Summary of CVE-2024-43484 and related context : The connected documents corroborate a denial-of-service vulnerability affecting .NET/Visual Studio components, attributed to algorithmic complexity in both System.IO.Packaging (CVE-2024-43484) and related areas such as System.Text.Json (CVE-2024-434...

CVE-2024-43483 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

...

CVE-2024-43484 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

...

CVE-2024-43484

A flaw was found in dotnet. The System.IO.Packaging library may allow untrusted inputs to influence algorithmically complex operations, resulting in a denial of service. Mitigation Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a...

CVE-2024-43483

A flaw was found in dotnet. The System.Security.Cryptography.Cose, System.IO.Packaging and System.Runtime.Caching components may be exposed to hostile input, making them susceptible to hash flooding attacks, resulting in denial of service. Mitigation Red Hat has investigated whether a possible...

2024-10 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 for x64 (KB5044098)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2024-10 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 (KB5044091)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2024-10 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 23H2 for ARM64 (KB5044033)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2024-10 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 22H2 for x64 (KB5044033)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...