Bug 1728823 - Update to .NET Core Runtime 2.1.12 and SDK 2.1.508
Summary: Update to .NET Core Runtime 2.1.12 and SDK 2.1.508
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: dotnet
Version: 8.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: 8.0
Assignee: Omair Majid
QA Contact: Radka Janek
URL:
Whiteboard:
Depends On:
Blocks: 1729752
TreeView+ depends on / blocked
 
Reported: 2019-07-10 17:35 UTC by Omair Majid
Modified: 2019-11-05 21:00 UTC (History)
7 users (show)

Fixed In Version: dotnet-2.1.508-1.el8
Doc Type: Rebase: Bug Fixes and Enhancements
Doc Text:
Clone Of:
: 1729752 (view as bug list)
Environment:
Last Closed: 2019-11-05 20:59:37 UTC
Type: Bug
Target Upstream Version:


Attachments (Terms of Use)


Links
System ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2019:3395 None None None 2019-11-05 21:00:01 UTC

Description Omair Majid 2019-07-10 17:35:05 UTC
.NET Core Runtime 2.1.12 and SDK 2.1.508 were recently released by Microsoft: https://github.com/dotnet/core/blob/master/release-notes/2.1/2.1.12/2.1.12.md

This is a bugfix release. We need to rebase the version in RHEL 8 to this latest release.

In particular, this updates the SDK to pick up the security fix for:

1. CVE-2019-1075: ASP.NET Core Spoofing Vulnerability

Users will have to rebuild their software after this update to pick up the fixes for CVE.

Comment 7 errata-xmlrpc 2019-11-05 20:59:37 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:3395


Note You need to log in before you can comment on or make changes to this bug.