UbuntuUpdates.org

Package "dotnet-hostfxr-7.0"

Name: dotnet-hostfxr-7.0

Description:

dotNET host resolver
Latest version: 7.0.119-0ubuntu1~23.10.1
Release: mantic (23.10)
Level: security
Repository: universe
Head package: dotnet7
Homepage: https://dot.net/core

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "dotnet-hostfxr-7.0"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "dotnet-hostfxr-7.0" in Mantic

Repository Area Version
base universe 7.0.110-0ubuntu1
updates universe 7.0.119-0ubuntu1~23.10.1
proposed universe 7.0.118-0ubuntu1~23.10.1

Changelog

Version: 7.0.113-0ubuntu1~23.10.1 2023-10-25 05:12:41 UTC

  dotnet7 (7.0.113-0ubuntu1~23.10.1) mantic-security; urgency=medium

  * New upstream release
  * SECURITY REGRESSION: regression update (LP: #2040208)
    - Addresses a regression previously introduced by the fix for
      CVE-2023-36799.

 -- Ian Constantin <email address hidden> Tue, 24 Oct 2023 10:53:54 +0300
Source diff to previous version
2040208 Update to 7.0.113
CVE-2023-36799 .NET Core and Visual Studio Denial of Service Vulnerability

Version: 7.0.112-0ubuntu1 2023-10-19 15:07:47 UTC

  dotnet7 (7.0.112-0ubuntu1) mantic-security; urgency=medium

  * New upstream release.
  * SECURITY UPDATE: denial of service
    - CVE-2023-44487: Denial of service - Kestrel server.
  * SECURITY UPDATE: denial of service
    - CVE-2023-36799: A vulnerability exists in .NET when processing X.509
      certificates that may result in Denial of Service.
  * debian/tests/cli-metadata-should-be-correct: updated regex for the Host
    Runtime Version check.
  * debian/rules: strip away -fstack-clash-protection flag and set
    -mbranch-protection=bti for arm64.

 -- Ian Constantin <email address hidden> Wed, 18 Oct 2023 16:22:12 +0300
CVE-2023-44487 The HTTP/2 protocol allows a denial of service (server resource consum ...
CVE-2023-36799 .NET Core and Visual Studio Denial of Service Vulnerability


About   -   Send Feedback to @ubuntu_updates