38 matches found
Security Bulletin: IBM Cognos Command Center is affected by multiple vulnerabilities (CVE-2023-21939, CVE-2023-21967, CVE-2022-29117, XFID: 234366)
Summary There are vulnerabilities in IBM® Semeru Java™ Version 11 used by IBM Cognos Command Center. IBM Cognos Command Center 10.2.4 Fix Pack 1 IF19 has addressed the applicable CVEs by upgrading to IBM® Semeru JRE 11.0.19.0 CVE-2023-21939, CVE-2023-21967. The following 3rd party components used...
Security Bulletin: A vulnerability in Microsoft ASP.NET affects IBM Robotic Process Automation and may result in a denial of service (CVE-2022-29117)
Summary Microsoft ASP.NET is used by IBM Robotic Process Automation as part of the application framework. CVE-2022-29117 Vulnerability Details CVEID:CVE-2022-29117 DESCRIPTION: Microsoft ASP.NET and Visual Studio are vulnerable to a denial of service. By sending a specially-crafted request, a...
Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 5.0.17-alt1
5.0.17-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 12, 2023 Vitaly Lipatov - new version 5.0.17 with rpmgs script - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267: .NET Denial of Service Vulnerability...
Security fix for the ALT Linux 10 package dotnet-runtime-5.0 version 5.0.17-alt1
5.0.17-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 13, 2023 Vitaly Lipatov - new version 5.0.17 with rpmgs script - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267: .NET Denial of Service Vulnerability...
Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.26-alt1
3.1.26-alt1 built Feb. 20, 2023 Vitaly Lipatov in task 315307 Aug. 5, 2022 Vitaly Lipatov - .NET Core 3.1.26 and .NET Core SDK 3.1.420 releases - CVE-2022-30184: .NET Information Disclosure Vulnerability - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Servi...
Security fix for the ALT Linux 10 package dotnet-coreclr-3.1 version 3.1.26-alt1
3.1.26-alt1 built Feb. 20, 2023 Vitaly Lipatov in task 315307 Oct. 13, 2022 Vitaly Lipatov - .NET Core 3.1.26 - CVE-2022-30184: .NET Information Disclosure Vulnerability - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267:...
Security Bulletin: IBM Robotic Process Automation may be vulnerable to denial of service due to microsoft.owin.security.cookies (CVE-2022-29117)
Summary microsoft.owin.security.cookies is used by IBM Robotic Process Automation as part of Miscrosoft ASP.NET. CVE-2022-29117 Vulnerability Details CVEID:CVE-2022-29117 DESCRIPTION: Microsoft ASP.NET and Visual Studio are vulnerable to a denial of service. By sending a specially-crafted request...
RHEL 9 : .NET 6.0 (RHSA-2022:4588)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4588 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...
Security fix for the ALT Linux 10 package dotnet-runtime-7.0 version 6.0.7-alt1
Aug. 5, 2022 Vitaly Lipatov 6.0.7-alt1 - .NET 6.0.7 - CVE-2022-30184: .NET Information Disclosure Vulnerability - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267: .NET Denial of Service Vulnerability...
Security fix for the ALT Linux 10 package dotnet-bootstrap-6.0 version 6.0.7-alt1
Aug. 5, 2022 Vitaly Lipatov 6.0.7-alt1 - The .NET 6.0.7 and .NET SDK 6.0.107 releases - CVE-2022-30184: .NET Information Disclosure Vulnerability - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267: .NET Denial of Service...
Security fix for the ALT Linux 10 package dotnet-bootstrap-7.0 version 6.0.7-alt1
Aug. 5, 2022 Vitaly Lipatov 6.0.7-alt1 - The .NET 6.0.7 and .NET SDK 6.0.107 releases - CVE-2022-30184: .NET Information Disclosure Vulnerability - CVE-2022-29117: .NET Denial of Service Vulnerability - CVE-2022-29145: .NET Denial of Service Vulnerability - CVE-2022-23267: .NET Denial of Service...
Oracle Linux 9 : .NET / 6.0 (ELSA-2022-4588)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-4588 advisory. 6.0.105-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime...
Fedora: Security Advisory for dotnet6.0 (FEDORA-2022-256d559f0c)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for dotnet6.0 (FEDORA-2022-9a1d5ea33c)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for dotnet6.0 (FEDORA-2022-d69fee9f38)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Oracle Linux 8 : .NET / 6.0 (ELSA-2022-2199)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-2199 advisory. 6.0.105-1.0.1 - Add missing Oracle RIDs 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime 6.0.5 - Resolves: RHBZ2082267 6.0.104-2 - Update to .NET SDK...
Oracle Linux 8 : .NET / Core / 3.1 (ELSA-2022-2202)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-2202 advisory. 3.1.419-1.0.1 - Add missing Oracle Linux Runtime IDs - Update to .NET SDK 3.1.417 and Runtime 3.1.23 - Resolves: RHBZ2060566 3.1.419-1 - Update to .NET...
Important: Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Rocky Linux 8 : .NET 5.0 (RLSA-2022:2200)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:2200 advisory. - .NET and Visual Studio Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-23267, CVE-2022-29145. CVE-2022-29117 Note that Nessus has not test...
Security Updates for Microsoft Visual Studio Products (May 2022)
The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-24513 - Multiple denial of service DoS vulnerabilities. An...