Supplying a specially crafted certificate can cause an infinite X509Chain, resulting in a denial of service.
This issue has been addressed in the following products: dotNET on RHEL Via RHSA-2017:3248 https://access.redhat.com/errata/RHSA-2017:3248
Further details of this issue can be found in the upstream Microsoft advisories: https://github.com/dotnet/announcements/issues/44 https://github.com/dotnet/corefx/issues/25245 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11770
External References: https://github.com/dotnet/announcements/issues/44