Upstream information
CVE-2024-0056 at MITRE
Description
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having important severity.
No SUSE Bugzilla entries cross referenced.
No SUSE Security Announcements cross referenced.
List of released packages
Product(s) | Fixed package version(s) | References |
SUSE Liberty Linux 8 | aspnetcore-runtime-6.0 >= 6.0.26-1.el8_9
aspnetcore-runtime-7.0 >= 7.0.15-1.el8_9
aspnetcore-runtime-8.0 >= 8.0.1-1.el8_9
aspnetcore-targeting-pack-6.0 >= 6.0.26-1.el8_9
aspnetcore-targeting-pack-7.0 >= 7.0.15-1.el8_9
aspnetcore-targeting-pack-8.0 >= 8.0.1-1.el8_9
dotnet >= 8.0.101-1.el8_9
dotnet-apphost-pack-6.0 >= 6.0.26-1.el8_9
dotnet-apphost-pack-7.0 >= 7.0.15-1.el8_9
dotnet-apphost-pack-8.0 >= 8.0.1-1.el8_9
dotnet-host >= 8.0.1-1.el8_9
dotnet-hostfxr-6.0 >= 6.0.26-1.el8_9
dotnet-hostfxr-7.0 >= 7.0.15-1.el8_9
dotnet-hostfxr-8.0 >= 8.0.1-1.el8_9
dotnet-runtime-6.0 >= 6.0.26-1.el8_9
dotnet-runtime-7.0 >= 7.0.15-1.el8_9
dotnet-runtime-8.0 >= 8.0.1-1.el8_9
dotnet-sdk-6.0 >= 6.0.126-1.el8_9
dotnet-sdk-6.0-source-built-artifacts >= 6.0.126-1.el8_9
dotnet-sdk-7.0 >= 7.0.115-1.el8_9
dotnet-sdk-7.0-source-built-artifacts >= 7.0.115-1.el8_9
dotnet-sdk-8.0 >= 8.0.101-1.el8_9
dotnet-sdk-8.0-source-built-artifacts >= 8.0.101-1.el8_9
dotnet-targeting-pack-6.0 >= 6.0.26-1.el8_9
dotnet-targeting-pack-7.0 >= 7.0.15-1.el8_9
dotnet-targeting-pack-8.0 >= 8.0.1-1.el8_9
dotnet-templates-6.0 >= 6.0.126-1.el8_9
dotnet-templates-7.0 >= 7.0.115-1.el8_9
dotnet-templates-8.0 >= 8.0.101-1.el8_9
netstandard-targeting-pack-2.1 >= 8.0.101-1.el8_9
| Patchnames: RHSA-2024:0150 RHSA-2024:0157 RHSA-2024:0158 |
SUSE Liberty Linux 9 | aspnetcore-runtime-6.0 >= 6.0.26-1.el9_3
aspnetcore-runtime-7.0 >= 7.0.15-1.el9_3
aspnetcore-runtime-8.0 >= 8.0.1-1.el9_3
aspnetcore-targeting-pack-6.0 >= 6.0.26-1.el9_3
aspnetcore-targeting-pack-7.0 >= 7.0.15-1.el9_3
aspnetcore-targeting-pack-8.0 >= 8.0.1-1.el9_3
dotnet-apphost-pack-6.0 >= 6.0.26-1.el9_3
dotnet-apphost-pack-7.0 >= 7.0.15-1.el9_3
dotnet-apphost-pack-8.0 >= 8.0.1-1.el9_3
dotnet-host >= 8.0.1-1.el9_3
dotnet-hostfxr-6.0 >= 6.0.26-1.el9_3
dotnet-hostfxr-7.0 >= 7.0.15-1.el9_3
dotnet-hostfxr-8.0 >= 8.0.1-1.el9_3
dotnet-runtime-6.0 >= 6.0.26-1.el9_3
dotnet-runtime-7.0 >= 7.0.15-1.el9_3
dotnet-runtime-8.0 >= 8.0.1-1.el9_3
dotnet-sdk-6.0 >= 6.0.126-1.el9_3
dotnet-sdk-6.0-source-built-artifacts >= 6.0.126-1.el9_3
dotnet-sdk-7.0 >= 7.0.115-1.el9_3
dotnet-sdk-7.0-source-built-artifacts >= 7.0.115-1.el9_3
dotnet-sdk-8.0 >= 8.0.101-1.el9_3
dotnet-sdk-8.0-source-built-artifacts >= 8.0.101-1.el9_3
dotnet-targeting-pack-6.0 >= 6.0.26-1.el9_3
dotnet-targeting-pack-7.0 >= 7.0.15-1.el9_3
dotnet-targeting-pack-8.0 >= 8.0.1-1.el9_3
dotnet-templates-6.0 >= 6.0.126-1.el9_3
dotnet-templates-7.0 >= 7.0.115-1.el9_3
dotnet-templates-8.0 >= 8.0.101-1.el9_3
netstandard-targeting-pack-2.1 >= 8.0.101-1.el9_3
| Patchnames: RHSA-2024:0151 RHSA-2024:0152 RHSA-2024:0156 |
SUSE Timeline for this CVE
CVE page created: Tue Jan 9 21:00:27 2024
CVE page last modified: Thu Nov 28 19:52:06 2024