USN-6959-1: .NET vulnerability
13 August 2024
dotnet8 could be made to disclose sensitive information.
Releases
Packages
- dotnet8 - .NET CLI tools and runtime
Details
It was discovered that .NET suffered from an information disclosure
vulnerability. An attacker could potentially use this issue to
read targeted email messages.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 24.04
-
aspnetcore-runtime-8.0
-
8.0.8-0ubuntu1~24.04.1
-
dotnet-host-8.0
-
8.0.8-0ubuntu1~24.04.1
-
dotnet-hostfxr-8.0
-
8.0.8-0ubuntu1~24.04.1
-
dotnet-runtime-8.0
-
8.0.8-0ubuntu1~24.04.1
-
dotnet-sdk-8.0
-
8.0.108-0ubuntu1~24.04.1
-
dotnet8
-
8.0.108-8.0.8-0ubuntu1~24.04.1
Ubuntu 22.04
-
aspnetcore-runtime-8.0
-
8.0.8-0ubuntu1~22.04.1
-
dotnet-host-8.0
-
8.0.8-0ubuntu1~22.04.1
-
dotnet-hostfxr-8.0
-
8.0.8-0ubuntu1~22.04.1
-
dotnet-runtime-8.0
-
8.0.8-0ubuntu1~22.04.1
-
dotnet-sdk-8.0
-
8.0.108-0ubuntu1~22.04.1
-
dotnet8
-
8.0.108-8.0.8-0ubuntu1~22.04.1
In general, a standard system update will make all the necessary changes.