Ausführen von Code mit höheren Privilegien in dotnet3.1
ID: | FEDORA-2021-c06b64b5ee |
Distribution: | Fedora |
Plattformen: | Fedora 32 |
Datum: | Di, 18. Mai 2021, 07:16 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31204 |
Applikationen: | dotnet3.1 |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-c06b64b5ee 2021-05-18 01:06:10.569352 -------------------------------------------------------------------------------- Name : dotnet3.1 Product : Fedora 32 Version : 3.1.115 Release : 1.fc32 URL : https://github.com/dotnet/ Summary : .NET Core Runtime and SDK Description : .NET Core is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET Core contains a runtime conforming to .NET Standards a set of framework libraries, an SDK containing compilers and a 'dotnet' application to drive everything. -------------------------------------------------------------------------------- Update Information: This is the May 2021 release for .NET Core 3.1. Release Notes are here:https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.15/3.1.15.md This includes a fix for CVE-2021-31204: NET Core Elevation of Privilege Vulnerability Please note this additional change needed to benefit from the CVE fix: > Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed. -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2021 Omair Majid |