A vulnerability related to the processing of web requests has been reported in ASP.NET Core. An unauthenticated remote attacker could exploit this vulnerability to cause a Denial of Service by sending specially crafted requests to an ASP.NET Core application.
External References: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602 https://github.com/aspnet/Announcements/issues/402
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:0130 https://access.redhat.com/errata/RHSA-2020:0130
This issue has been addressed in the following products: .NET Core on Red Hat Enterprise Linux Via RHSA-2020:0134 https://access.redhat.com/errata/RHSA-2020:0134
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-0602