[ubuntu/kinetic-updates] dotnet6 6.0.116-0ubuntu1~22.10.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Apr 11 18:03:08 UTC 2023
dotnet6 (6.0.116-0ubuntu1~22.10.1) kinetic-security; urgency=medium
* New upstream release.
* SECURITY UPDATE: elevation of privilege
- CVE-2023-28260: AzureDevOps Elevation of Privilege - Dotnet CWD dll
hijack vuln.
dotnet6 (6.0.115-0ubuntu2~22.10.1) kinetic; urgency=medium
* Backport dotnet 6.0.115 to kinetic (LP: #2011807).
- debian/control: revert to libicu71
dotnet6 (6.0.115-0ubuntu2) lunar; urgency=medium
* d/p/add-kinetic-rids.patch: Added RIDs for ubuntu 22.10 kinetic.
- Based on the dropped d/p/66225runtime-fix-runtime-id.patch
from wfurt <tweinfurt at yahoo.com>.
dotnet6 (6.0.115-0ubuntu1) lunar; urgency=medium
* New upstream microrelease.
* d/p/66225runtime-fix-runtime-id.patch: Dropped.
dotnet6 (6.0.114-0ubuntu1) lunar; urgency=medium
* New upstream microrelease.
* d/control: Using libicu72.
* d/p/1501sdk-22373-portablerid.patch: Dropped.
* d/repack-dotnet-tarball.sh: New file. Repack MS tarball.
* d/rules: if-else for bootstrapping building versus normal one (as done
for dotnet7). Reenabling install_location file per architecture. Removing
unused commented lines for clarity.
* d/tests: Updating these to match the style of those in dotnet7.
dotnet6 (6.0.113-0ubuntu2) lunar; urgency=medium
* Rebuild against latest icu
dotnet6 (6.0.113-0ubuntu1) lunar; urgency=medium
* New upstream release.
* SECURITY UPDATE: denial of service
- CVE-2023-21538: Parsing an empty HTTP response as a JSON.NET JObject
causes a stack overflow and crashes a process.
Date: 2023-04-06 09:11:10.071844+00:00
Changed-By: Ian Constantin <ian.constantin at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/dotnet6/6.0.116-0ubuntu1~22.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the kinetic-changes
mailing list