What is the severity of USN-6693-1?

The severity of USN-6693-1 is critical due to its potential to cause denial of service through resource leaks.

How do I fix USN-6693-1?

To fix USN-6693-1, update to the recommended package versions: aspnetcore-runtime-7.0 (7.0.117-0ubuntu1~23.10.1), aspnetcore-runtime-8.0 (8.0.3-0ubuntu1~23.10.1), dotnet-runtime-7.0 (7.0.117-0ubuntu1~23.10.1), or dotnet-runtime-8.0 (8.0.3-0ubuntu1~23.10.1).

Which versions of Ubuntu are affected by USN-6693-1?

USN-6693-1 affects Ubuntu versions 22.04 and 23.10.

What are the specific packages affected by USN-6693-1?

The specific packages affected by USN-6693-1 include aspnetcore-runtime and dotnet-runtime in both version 7.0 and 8.0.

Is there a workaround for USN-6693-1 while waiting for a fix?

There is no official workaround for USN-6693-1, so the best course of action is to apply the updates as soon as they are available.

Vulnerability/
USN-6693-1

12/3/2024

USN-6693-1: .NET vulnerability

First published: Tue Mar 12 2024(Updated: )

It was discovered that .NET did not properly handle certain specially crafted requests. An attacker could potentially use this issue to cause a resource leak, leading to a denial of service.

Affected Software	Affected Version	How to fix
All of
ubuntu/aspnetcore-runtime-7.0	<7.0.117-0ubuntu1~23.10.1	7.0.117-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/aspnetcore-runtime-8.0	<8.0.3-0ubuntu1~23.10.1	8.0.3-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/dotnet-runtime-7.0	<7.0.117-0ubuntu1~23.10.1	7.0.117-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/dotnet-runtime-8.0	<8.0.3-0ubuntu1~23.10.1	8.0.3-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/dotnet7	<7.0.117-0ubuntu1~23.10.1	7.0.117-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/dotnet8	<8.0.103-8.0.3-0ubuntu1~23.10.1	8.0.103-8.0.3-0ubuntu1~23.10.1
Ubuntu Linux	=23.10
All of
ubuntu/aspnetcore-runtime-7.0	<7.0.117-0ubuntu1~22.04.1	7.0.117-0ubuntu1~22.04.1
Ubuntu Linux	=22.04
All of
ubuntu/aspnetcore-runtime-8.0	<8.0.3-0ubuntu1~22.04.1	8.0.3-0ubuntu1~22.04.1
Ubuntu Linux	=22.04
All of
ubuntu/dotnet-runtime-7.0	<7.0.117-0ubuntu1~22.04.1	7.0.117-0ubuntu1~22.04.1
Ubuntu Linux	=22.04
All of
ubuntu/dotnet-runtime-8.0	<8.0.3-0ubuntu1~22.04.1	8.0.3-0ubuntu1~22.04.1
Ubuntu Linux	=22.04
All of
ubuntu/dotnet7	<7.0.117-0ubuntu1~22.04.1	7.0.117-0ubuntu1~22.04.1
Ubuntu Linux	=22.04
All of
ubuntu/dotnet8	<8.0.103-8.0.3-0ubuntu1~22.04.1	8.0.103-8.0.3-0ubuntu1~22.04.1
Ubuntu Linux	=22.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2024-21392

Frequently Asked Questions

What is the severity of USN-6693-1?
The severity of USN-6693-1 is critical due to its potential to cause denial of service through resource leaks.
How do I fix USN-6693-1?
To fix USN-6693-1, update to the recommended package versions: aspnetcore-runtime-7.0 (7.0.117-0ubuntu1~23.10.1), aspnetcore-runtime-8.0 (8.0.3-0ubuntu1~23.10.1), dotnet-runtime-7.0 (7.0.117-0ubuntu1~23.10.1), or dotnet-runtime-8.0 (8.0.3-0ubuntu1~23.10.1).
Which versions of Ubuntu are affected by USN-6693-1?
USN-6693-1 affects Ubuntu versions 22.04 and 23.10.
What are the specific packages affected by USN-6693-1?
The specific packages affected by USN-6693-1 include aspnetcore-runtime and dotnet-runtime in both version 7.0 and 8.0.
Is there a workaround for USN-6693-1 while waiting for a fix?
There is no official workaround for USN-6693-1, so the best course of action is to apply the updates as soon as they are available.

agent/severity
agent/title
agent/references
agent/last-modified-date
agent/type
agent/first-publish-date
agent/description
agent/softwarecombine
agent/event
agent/trending
agent/source
agent/tags
collector/usn
source/Ubuntu
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu linux
version/ubuntu linux/23.10
version/ubuntu linux/22.04