RHSA-2022:2202HighCVSS 7.5
Red Hat Security Advisory: .NET Core 3.1 security, bug fix, and enhancement update
🔗 CVE IDs covered (3)
📋 Description
CVE-2022-23267 — dotnet: excess memory allocation via HttpClient causes DoS CVE-2022-29117 — dotnet: malicious content causes high CPU and memory usage CVE-2022-29145 — dotnet: parsing HTML causes Denial of Service
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2022:2202
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2083647
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2083649
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2083650
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_2202.json