Bug 2403085 (CVE-2025-55315)
| Summary: | CVE-2025-55315 dotnet: .NET Security Feature Bypass Vulnerability | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | sdawley, security-response-team |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in ASP.NET Core’s HTTP request handling that leads to inconsistent interpretation of specially crafted HTTP requests. This mismatch can be abused by an authorized network attacker to smuggle or manipulate request boundaries, allowing bypass of security controls or unintended forwarding of request data.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2404151, 2404152, 2404153, 2404154 | ||
| Bug Blocks: | |||
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:18148 https://access.redhat.com/errata/RHSA-2025:18148 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:18149 https://access.redhat.com/errata/RHSA-2025:18149 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2025:18152 https://access.redhat.com/errata/RHSA-2025:18152 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:18150 https://access.redhat.com/errata/RHSA-2025:18150 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2025:18153 https://access.redhat.com/errata/RHSA-2025:18153 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:18151 https://access.redhat.com/errata/RHSA-2025:18151 |
Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network. Affected versions: .NET 8.0 (that's the RHEL dotnet8.0 package) .NET 9.0 (that's the RHEL dotnet9.0 package) .NET 10.0 (that's the RHEL dotnet10.0 package)