RHEL 7 : dotNET (RHSA-2018:3676)
Medium Nessus Plugin ID 119413
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionAn update for rh-dotnet21-dotnet is now available for .NET Core on Red Hat Enterprise Linux.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
.NET Core is a managed software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
A new version of .NET Core that addresses a security vulnerability is now available. The updated version is .NET Core 2.1.5.
Security Fix(es) :
* .NET Core: Arbitrary file and directory creation (CVE-2018-8416)
For more information, please refer to the upstream docs in the References section.
SolutionUpdate the affected packages.