UbuntuUpdates.org

Package "dotnet-apphost-pack-6.0"

Name: dotnet-apphost-pack-6.0

Description:

Internal - targeting pack for Microsoft.NETCore.App 6.0

Latest version: 6.0.135-0ubuntu1~22.04.1
Release: jammy (22.04)
Level: updates
Repository: main
Head package: dotnet6
Homepage: https://dot.net/core

Links


Download "dotnet-apphost-pack-6.0"


Other versions of "dotnet-apphost-pack-6.0" in Jammy

Repository Area Version
security main 6.0.135-0ubuntu1~22.04.1
proposed main 6.0.136-0ubuntu1~22.04.1

Changelog

Version: 6.0.135-0ubuntu1~22.04.1 2024-10-08 21:09:48 UTC

  dotnet6 (6.0.135-0ubuntu1~22.04.1) jammy-security; urgency=medium

  * New upstream release
  * SECURITY UPDATE: denial of service
    - CVE-2024-43483: Multiple .NET components designed to process hostile
      input are susceptible to hash flooding attacks.
  * SECURITY UPDATE: denial of service
    - CVE-2024-43484: System.IO.Packaging - Multiple DoS vectors in use of
      SortedList.
  * SECURITY UPDATE: denial of service
    - CVE-2024-43485: Denial of Service attack against System.Text.Json
      ExtensionData feature.

 -- Nishit Majithia <email address hidden> Fri, 04 Oct 2024 20:46:48 +0530

Source diff to previous version

Version: 6.0.133-0ubuntu1~22.04.1 2024-09-19 16:07:08 UTC

  dotnet6 (6.0.133-0ubuntu1~22.04.1) jammy; urgency=medium

  * New upstream release (LP: #2076742).

 -- Dominik Viererbe <email address hidden> Tue, 13 Aug 2024 01:13:16 +0300

Source diff to previous version
2076742 [SRU] New upstream microrelease .NET 6.0.33/6.0.133

Version: 6.0.132-0ubuntu1~22.04.1 2024-07-09 23:07:07 UTC

  dotnet6 (6.0.132-0ubuntu1~22.04.1) jammy-security; urgency=medium

  * New upstream release
  * SECURITY UPDATE: denial of service
    - CVE-2024-38095: Denial of service in parsing X.509 Content and
      ObjectIdentifiers.
  * debian/eng/build-dotnet-tarball.sh: SECURITY_PARTNERS_REPOSITORY
    connection method updated.

 -- Nishit Majithia <email address hidden> Thu, 04 Jul 2024 10:23:31 +0530

Source diff to previous version
CVE-2024-38095 .NET and Visual Studio Denial of Service Vulnerability

Version: 6.0.128-0ubuntu1~22.04.2 2024-04-18 23:07:13 UTC

  dotnet6 (6.0.128-0ubuntu1~22.04.2) jammy; urgency=medium

  * Add ca-certificates to dotnet-sdk-6.0 depends (LP: #2057982).
  * debian/tests/01_regular-tests:
    - Add optional environment variable REGULAR_TESTS_RUNNER_VERSION
      to download newer versions of test runner from
      https://github.com/canonical/dotnet-test-runner.
    - Add optional environment variable REGULAR_TESTS_REF
      to download newer versions of test cases from
      https://github.com/canonical/dotnet-regular-tests/
      - Add git as a dependency.
    - Increase testcase timeout from 300 to 720 seconds.
    - Add optional environment variable REGULAR_TESTS_TESTCASE_TIMEOUT_IN_SECONDS
      to allow overwriting the value externally.
    - Add optional environment variable REGULAR_TESTS_IGNORE_NU1102_ERRORS
      to ignore pagage not found errors during embargo time.
  * Add debian/eng/dotnet-version.py; needed by debian/tests/01_regular-tests
  * debian/rules: Added override_dh_auto_test; runs d/t/build-time-tests
  * debian/copyright: Update debian/ copyright information

 -- Dominik Viererbe <email address hidden> Fri, 15 Mar 2024 16:43:24 +0200




About   -   Send Feedback to @ubuntu_updates