rpm package
almalinux/dotnet-host
pkg:rpm/almalinux/dotnet-host
Vulnerabilities (57)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-43499 | — | < 9.0.0-1.el9_5 | 9.0.0-1.el9_5 | Nov 12, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43485 | — | < 8.0.10-1.el8_10 | 8.0.10-1.el8_10 | Oct 8, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43484 | — | < 8.0.10-1.el8_10 | 8.0.10-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43483 | — | < 8.0.10-1.el8_10 | 8.0.10-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-38229 | — | < 8.0.10-1.el8_10 | 8.0.10-1.el8_10 | Oct 8, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-38167 | — | < 8.0.8-1.el9_4 | 8.0.8-1.el9_4 | Aug 13, 2024 | .NET and Visual Studio Information Disclosure Vulnerability | ||
| CVE-2024-38095 | — | < 8.0.7-1.el9_4 | 8.0.7-1.el9_4 | Jul 9, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-30105 | — | < 8.0.7-1.el9_4 | 8.0.7-1.el9_4 | Jul 9, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-35264 | — | < 8.0.7-1.el9_4 | 8.0.7-1.el9_4 | Jul 9, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-30046 | — | < 8.0.5-1.el9_4 | 8.0.5-1.el9_4 | May 14, 2024 | Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-30045 | — | < 8.0.5-1.el9_4 | 8.0.5-1.el9_4 | May 14, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-21392 | — | < 8.0.3-2.el9_3 | 8.0.3-2.el9_3 | Mar 12, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-21404 | — | < 8.0.2-2.el8_9 | 8.0.2-2.el8_9 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21386 | — | < 8.0.2-2.el8_9 | 8.0.2-2.el8_9 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21319 | — | < 8.0.1-1.el8_9 | 8.0.1-1.el8_9 | Jan 9, 2024 | Microsoft Identity Denial of service vulnerability | ||
| CVE-2024-0057 | — | < 8.0.1-1.el8_9 | 8.0.1-1.el8_9 | Jan 9, 2024 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | ||
| CVE-2024-0056 | — | < 8.0.1-1.el8_9 | 8.0.1-1.el8_9 | Jan 9, 2024 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | ||
| CVE-2023-36558 | — | < 8.0.0-2.el9_3 | 8.0.0-2.el9_3 | Nov 14, 2023 | ASP.NET Core Security Feature Bypass Vulnerability | ||
| CVE-2023-36049 | — | < 8.0.0-2.el9_3 | 8.0.0-2.el9_3 | Nov 14, 2023 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | ||
| CVE-2023-44487 | Hig | 7.5 | KEV | < 7.0.12-1.el8_8 | 7.0.12-1.el8_8 | Oct 10, 2023 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
- CVE-2024-43499Nov 12, 2024affected < 9.0.0-1.el9_5fixed 9.0.0-1.el9_5
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-43485Oct 8, 2024affected < 8.0.10-1.el8_10fixed 8.0.10-1.el8_10
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-43484Oct 8, 2024affected < 8.0.10-1.el8_10fixed 8.0.10-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-43483Oct 8, 2024affected < 8.0.10-1.el8_10fixed 8.0.10-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-38229Oct 8, 2024affected < 8.0.10-1.el8_10fixed 8.0.10-1.el8_10
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-38167Aug 13, 2024affected < 8.0.8-1.el9_4fixed 8.0.8-1.el9_4
.NET and Visual Studio Information Disclosure Vulnerability
- CVE-2024-38095Jul 9, 2024affected < 8.0.7-1.el9_4fixed 8.0.7-1.el9_4
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-30105Jul 9, 2024affected < 8.0.7-1.el9_4fixed 8.0.7-1.el9_4
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-35264Jul 9, 2024affected < 8.0.7-1.el9_4fixed 8.0.7-1.el9_4
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-30046May 14, 2024affected < 8.0.5-1.el9_4fixed 8.0.5-1.el9_4
Visual Studio Denial of Service Vulnerability
- CVE-2024-30045May 14, 2024affected < 8.0.5-1.el9_4fixed 8.0.5-1.el9_4
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-21392Mar 12, 2024affected < 8.0.3-2.el9_3fixed 8.0.3-2.el9_3
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-21404Feb 13, 2024affected < 8.0.2-2.el8_9fixed 8.0.2-2.el8_9
.NET Denial of Service Vulnerability
- CVE-2024-21386Feb 13, 2024affected < 8.0.2-2.el8_9fixed 8.0.2-2.el8_9
.NET Denial of Service Vulnerability
- CVE-2024-21319Jan 9, 2024affected < 8.0.1-1.el8_9fixed 8.0.1-1.el8_9
Microsoft Identity Denial of service vulnerability
- CVE-2024-0057Jan 9, 2024affected < 8.0.1-1.el8_9fixed 8.0.1-1.el8_9
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
- CVE-2024-0056Jan 9, 2024affected < 8.0.1-1.el8_9fixed 8.0.1-1.el8_9
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
- CVE-2023-36558Nov 14, 2023affected < 8.0.0-2.el9_3fixed 8.0.0-2.el9_3
ASP.NET Core Security Feature Bypass Vulnerability
- CVE-2023-36049Nov 14, 2023affected < 8.0.0-2.el9_3fixed 8.0.0-2.el9_3
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
- affected < 7.0.12-1.el8_8fixed 7.0.12-1.el8_8
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Page 2 of 3