RHEL 7 : .NET Core on Red Hat Enterprise Linux (RHSA-2018:0379)
Medium Nessus Plugin ID 107114
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionAn update for rh-dotnet20-dotnet, rh-dotnetcore10-dotnetcore, and rh-dotnetcore11-dotnetcore is now available for .NET Core on Red Hat Enterprise Linux.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
.NET Core is a managed software framework. It implements a subset of the .NET framework APIs and includes a CLR implementation.
New versions of .NET Core that address several security vulnerabilities are now available. The updated versions are .NET Core 1.0.9, 1.1.6, and 2.0.5.
Security Fix(es) :
* .NET Core: Improper processing of XML documents can cause a denial of service (CVE-2018-0764)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
SolutionUpdate the affected packages.