USN-6427-1 fixed a vulnerability in .NET. This update provides the corresponding update for .NET 8.
Original advisory details:
It was discovered that the .NET Kestrel web server did not properly handle HTTP/2 requests. A remote attacker could possibly use this issue to cause a denial of service.
{ "availability": "No subscription required", "binaries": [ { "dotnet-templates-8.0": "8.0.100~rc2-0ubuntu1", "dotnet-sdk-8.0": "8.0.100~rc2-0ubuntu1", "dotnet8": "8.0.100-8.0.0~rc2-0ubuntu1", "dotnet-hostfxr-8.0": "8.0.0~rc2-0ubuntu1", "aspnetcore-runtime-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-sdk-8.0-dbgsym": "8.0.100~rc2-0ubuntu1", "dotnet-apphost-pack-8.0-dbgsym": "8.0.0~rc2-0ubuntu1", "dotnet-runtime-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-host-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-host-8.0-dbgsym": "8.0.0~rc2-0ubuntu1", "netstandard-targeting-pack-2.1-8.0": "8.0.100~rc2-0ubuntu1", "dotnet-apphost-pack-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-sdk-8.0-source-built-artifacts": "8.0.100~rc2-0ubuntu1", "dotnet-runtime-8.0-dbgsym": "8.0.0~rc2-0ubuntu1", "aspnetcore-targeting-pack-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-targeting-pack-8.0-dbgsym": "8.0.0~rc2-0ubuntu1", "dotnet-targeting-pack-8.0": "8.0.0~rc2-0ubuntu1", "dotnet-hostfxr-8.0-dbgsym": "8.0.0~rc2-0ubuntu1" } ] }