Open bibliothek opened 1 year ago
Hi,
The lambda/dotnet image for 6 and 7 should be updated to latest patch versions (6.0.18 and 7.0.7), which contain fixes for the following CVEs
lambda/dotnet
6
7
6.0.18
7.0.7
CVE-2023-24895 - .NET Remote Code Execution Vulnerability
CVE-2023-24897 - .NET Remote Code Execution Vulnerability
CVE-2023-24936 - .NET Elevation of Privilege Vulnerability
CVE-2023-29331 - .NET Denial of Service Vulnerability
CVE-2023-29337 - NuGet Client Remote Code Execution Vulnerability
CVE-2023-33126 - .NET Denial of Service Vulnerability
CVE-2023-33128 - .NET Denial of Service Vulnerability
CVE-2023-33135 - .NET Denial of Service Vulnerability
Hi,
The
lambda/dotnet
image for6
and7
should be updated to latest patch versions (6.0.18
and7.0.7
), which contain fixes for the following CVEsCVEs
CVE-2023-24895 - .NET Remote Code Execution Vulnerability
CVE-2023-24897 - .NET Remote Code Execution Vulnerability
CVE-2023-24936 - .NET Elevation of Privilege Vulnerability
CVE-2023-29331 - .NET Denial of Service Vulnerability
CVE-2023-29337 - NuGet Client Remote Code Execution Vulnerability
CVE-2023-33126 - .NET Denial of Service Vulnerability
CVE-2023-33128 - .NET Denial of Service Vulnerability
CVE-2023-33135 - .NET Denial of Service Vulnerability
Release notes