Package "dotnet6"

Name: dotnet6


dotNET CLI tools and runtime

Latest version: *DELETED*
Release: jammy (22.04)
Level: updates
Repository: universe
Homepage: https://dot.net/core


Download "dotnet6"

Other versions of "dotnet6" in Jammy

Repository Area Version
security main 6.0.127-0ubuntu1~22.04.1
updates main 6.0.128-0ubuntu1~22.04.2
proposed main 6.0.129-0ubuntu1~22.04.1

Packages in group

Deleted packages are displayed in grey.


Version: *DELETED* 2024-04-18 23:07:15 UTC
No changelog for deleted or moved packages.

Version: 6.0.128-0ubuntu1~22.04.2 2024-04-02 09:07:19 UTC

  dotnet6 (6.0.128-0ubuntu1~22.04.2) jammy; urgency=medium

  * Add ca-certificates to dotnet-sdk-6.0 depends (LP: #2057982).
  * debian/tests/01_regular-tests:
    - Add optional environment variable REGULAR_TESTS_RUNNER_VERSION
      to download newer versions of test runner from
    - Add optional environment variable REGULAR_TESTS_REF
      to download newer versions of test cases from
      - Add git as a dependency.
    - Increase testcase timeout from 300 to 720 seconds.
    - Add optional environment variable REGULAR_TESTS_TESTCASE_TIMEOUT_IN_SECONDS
      to allow overwriting the value externally.
    - Add optional environment variable REGULAR_TESTS_IGNORE_NU1102_ERRORS
      to ignore pagage not found errors during embargo time.
  * Add debian/eng/dotnet-version.py; needed by debian/tests/01_regular-tests
  * debian/rules: Added override_dh_auto_test; runs d/t/build-time-tests
  * debian/copyright: Update debian/ copyright information

 -- Dominik Viererbe <email address hidden> Fri, 15 Mar 2024 16:43:24 +0200

Source diff to previous version

Version: 6.0.127-0ubuntu1~22.04.1 2024-02-14 01:06:51 UTC

  dotnet6 (6.0.127-0ubuntu1~22.04.1) jammy-security; urgency=medium

  * New upstream release
  * SECURITY UPDATE: denial of service
    - CVE-2024-21386: denial of service vector in SignalR server.
  * SECURITY UPDATE: denial of service
    - CVE-2024-21404: .NET with OpenSSL support is vulnerable to a denial of
      service when parsing X509 certificates.

 -- Nishit Majithia <email address hidden> Fri, 09 Feb 2024 10:40:34 +0530

Source diff to previous version
CVE-2024-21386 .NET Denial of Service Vulnerability
CVE-2024-21404 .NET Denial of Service Vulnerability

Version: 6.0.126-0ubuntu1~22.04.1 2024-01-11 17:06:48 UTC

  dotnet6 (6.0.126-0ubuntu1~22.04.1) jammy-security; urgency=medium

  * New upstream release
  * SECURITY UPDATE: validation bypass
    - CVE-2024-0057: X509 Certificates - Validation Bypass across Azure
  * SECURITY UPDATE: denial of service
    - CVE-2024-21319: Azure Identity - Pre-Authentication DoS in JWT

 -- Nishit Majithia <email address hidden> Thu, 04 Jan 2024 10:00:44 +0530

Source diff to previous version
CVE-2024-0057 NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
CVE-2024-21319 Microsoft Identity Denial of service vulnerability

Version: 6.0.125-0ubuntu1~22.04.1 2023-11-14 22:07:11 UTC

  dotnet6 (6.0.125-0ubuntu1~22.04.1) jammy-security; urgency=medium

  [ Nishit Majithia ]
  * New upstream release
  * SECURITY UPDATE: security feature bypass
    - CVE-2023-36558: Security Feature Bypass in Blazor forms
  * SECURITY UPDATE: Arbitrary File Write and Deletion
    - CVE-2023-36049: Microsoft .NET FormatFtpCommand CRLF Injection
      Arbitrary File Write and Deletion

 -- Ian Constantin <email address hidden> Mon, 13 Nov 2023 15:37:51 +0200

About   -   Send Feedback to @ubuntu_updates