rpm package
almalinux/dotnet-targeting-pack-10.0
pkg:rpm/almalinux/dotnet-targeting-pack-10.0
Vulnerabilities (9)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-45591 | Hig | 7.5 | < 10.0.9-1.el8_10 | 10.0.9-1.el8_10 | Jun 9, 2026 | Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-45491 | Med | 6.2 | < 10.0.9-1.el8_10 | 10.0.9-1.el8_10 | Jun 9, 2026 | Improper link resolution before file access ('link following') in .NET allows an unauthorized attacker to perform tampering locally. | |
| CVE-2026-42899 | Hig | 7.5 | < 10.0.8-1.el8_10 | 10.0.8-1.el8_10 | May 12, 2026 | Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-33116 | Hig | 7.5 | < 10.0.6-1.el8_10 | 10.0.6-1.el8_10 | Apr 14, 2026 | Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-32203 | Hig | 7.5 | < 10.0.6-1.el8_10 | 10.0.6-1.el8_10 | Apr 14, 2026 | Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-32178 | Hig | 7.5 | < 10.0.6-1.el8_10 | 10.0.6-1.el8_10 | Apr 14, 2026 | Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network. | |
| CVE-2026-26171 | Hig | 7.5 | < 10.0.6-1.el8_10 | 10.0.6-1.el8_10 | Apr 14, 2026 | Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-26130 | Hig | 7.5 | < 10.0.4-1.el9_7 | 10.0.4-1.el9_7 | Mar 10, 2026 | Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network. | |
| CVE-2026-26127 | Hig | 7.5 | < 10.0.4-1.el9_7 | 10.0.4-1.el9_7 | Mar 10, 2026 | Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network. |
- affected < 10.0.9-1.el8_10fixed 10.0.9-1.el8_10
Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network.
- affected < 10.0.9-1.el8_10fixed 10.0.9-1.el8_10
Improper link resolution before file access ('link following') in .NET allows an unauthorized attacker to perform tampering locally.
- affected < 10.0.8-1.el8_10fixed 10.0.8-1.el8_10
Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny service over a network.
- affected < 10.0.6-1.el8_10fixed 10.0.6-1.el8_10
Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.
- affected < 10.0.6-1.el8_10fixed 10.0.6-1.el8_10
Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network.
- affected < 10.0.6-1.el8_10fixed 10.0.6-1.el8_10
Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.
- affected < 10.0.6-1.el8_10fixed 10.0.6-1.el8_10
Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.
- affected < 10.0.4-1.el9_7fixed 10.0.4-1.el9_7
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
- affected < 10.0.4-1.el9_7fixed 10.0.4-1.el9_7
Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network.