The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Microsoft ASP.NET Core: denial of service

Synthesis of the vulnerability 

An attacker can trigger a fatal error of Microsoft ASP.NET Core, in order to trigger a denial of service.
Impacted systems: Fedora, RHEL.
Severity of this alert: 1/4.
Creation date: 12/08/2020.
Références of this alert: CVE-2020-1597, FEDORA-2020-cad5d17c6d, RHSA-2020:3421-01, RHSA-2020:3422-01, VIGILANCE-VUL-33059.

Description of the vulnerability 

An attacker can trigger a fatal error of Microsoft ASP.NET Core, in order to trigger a denial of service.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer weakness announce impacts software or systems such as Fedora, RHEL.

Our Vigil@nce team determined that the severity of this security alert is low.

The trust level is of type confirmed by the editor, with an origin of document.

An attacker with a expert ability can exploit this vulnerability.

Solutions for this threat 

Microsoft ASP.NET Core: patch of August 2020.
A patch is indicated in information sources.

Fedora 32: new dotnet3.1 packages.
New packages are available:
  Fedora 32: dotnet3.1 3.1.107-1.fc32

Fedora 32: new dotnet-build-reference-packages packages.
New packages are available:
  Fedora 32: dotnet-build-reference-packages 0-5.20200608git1b1a695.fc32

RHEL 7: new rh-dotnet31 packages.
New packages are available:
  RHEL 7.0-7.8: rh-dotnet31 3.1.107-1.el7

RHEL 8.2: new dotnet packages.
New packages are available:
  RHEL 8.2: dotnet 3.1.107-1.el8_2
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides computers vulnerabilities alerts. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.