NuGet package
microsoft.netcore.app.runtime.linux-musl-arm64
pkg:nuget/microsoft.netcore.app.runtime.linux-musl-arm64
Vulnerabilities (24)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-1721 | — | >= 3.1.0, < 3.1.12 | 3.1.12 | Feb 25, 2021 | .NET Core and Visual Studio Denial of Service Vulnerability | ||
| CVE-2020-8927 | — | >= 3.0.0, < 3.1.23 | 3.1.23 | Sep 15, 2020 | A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to upda | ||
| CVE-2020-1147 | — | KEV | >= 3.1.0, < 3.1.6 | 3.1.6 | Jul 14, 2020 | A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'. | |
| CVE-2020-1108 | — | >= 3.1.0, < 3.1.4 | 3.1.4 | May 21, 2020 | A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'. |
- CVE-2021-1721Feb 25, 2021affected >= 3.1.0, < 3.1.12fixed 3.1.12
.NET Core and Visual Studio Denial of Service Vulnerability
- CVE-2020-8927Sep 15, 2020affected >= 3.0.0, < 3.1.23fixed 3.1.23
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to upda
- affected >= 3.1.0, < 3.1.6fixed 3.1.6
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
- CVE-2020-1108May 21, 2020affected >= 3.1.0, < 3.1.4fixed 3.1.4
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Page 2 of 2