Skip to content

Commit

Permalink
Update cve.md (#9059)
Browse files Browse the repository at this point in the history
  • Loading branch information
rbhanda authored Jan 11, 2024
1 parent 138b94e commit b6e5373
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions release-notes/6.0/cve.md
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,10 @@ Your app needs to be on the latest .NET 6 patch version to be secure. The longer
## Which CVEs apply to my app?

Your app may be vulnerable to the following published security [CVEs](https://www.cve.org/) if you are using the given version or older.
- 6.0.26 (January 2024)
- [CVE-2024-21319 | .NET Denial of Service Vulnerability](https://github.com/dotnet/announcements/issues/290)
- [CVE-2024-0057 | .NET Security Feature bypass Vulnerability](https://github.com/dotnet/announcements/issues/291)
- [CVE-2024-0056 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider Information Disclosure Vulnerability](https://github.com/dotnet/announcements/issues/292)
- 6.0.25 (November 2023)
- [CVE-2023-36038 | .NET Denial of Service Vulnerability](https://github.com/dotnet/announcements/issues/286)
- [CVE-2023-36049 | .NET Elevation of Privilege Vulnerability](https://github.com/dotnet/announcements/issues/287)
Expand Down

0 comments on commit b6e5373

Please sign in to comment.