maxmustermann/dotnet-core
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Merge pull request #6251 from dotnet/rbhanda-patch-4

Browse source 
Update 5.0.6.md
This commit is contained in:
Rahul Bhandari 2021-05-11 11:00:10 -07:00 committed by GitHub
parent 5288ba0b68 eb85bbf6ea
commit 35d4533cb9
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 14 additions and 13 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
release-notes/3.1/3.1.15/3.1.15.md
View file

@ -58,12 +58,6 @@ The following repos have been updated.
.NET Core 3.1.15 release carries both security and non-security fixes.
# Microsoft Security Advisory CVE-2021-31204 | .NET Core Elevation of Privilege Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0 and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
An elevation of privilage vulnerability exists in .NET 5.0 and .NET Core 3.1 when a user runs a single file application on Operating Systems based on Linux or macOS.
* [Blog Roundup][dotnet-blog]
* [Known issues](../3.1-known-issues.md)
@ -73,6 +67,13 @@ An elevation of privilage vulnerability exists in .NET 5.0 and .NET Core 3.1 whe
* [ASP.NET](https://github.com/dotnet/aspnetcore/pulls?q=milestone%3A3.1.15+is%3Aclosed+label%3Aservicing-approved)
* [Extensions](https://github.com/dotnet/extensions/pulls?q=milestone%3A3.1.15+is%3Aclosed+label%3Aservicing-approved)
### Microsoft Security Advisory CVE-2021-31204 | .NET Core Elevation of Privilege Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0 and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
An elevation of privilage vulnerability exists in .NET 5.0 and .NET Core 3.1 when a user runs a single file application on Operating Systems based on Linux or macOS.
## macOS Notarization Change
Running "dotnet build" will generate a dll instead of a dylib on macOS. This is a planned change to not use the AppHost by default on macOS because of [notarization requirements](https://docs.microsoft.com/dotnet/core/install/macos-notarization-issues). If you want to opt into using the AppHost, add the following to your project file:
```

14
release-notes/5.0/5.0.6/5.0.6.md
View file

@ -53,24 +53,24 @@ You need [Visual Studio 16.8](https://visualstudio.microsoft.com) or later to us
## Notable Changes
.NET 5.0.6 release carries both security and non-security fixes.
# Microsoft Security Advisory CVE-2021-31204 | .NET Core Elevation of Privilege Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0 and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
An elevation of privilage vulnerability exists in .NET 5.0 and .NET Core 3.1 when a user runs a single file application on Operating Systems based on Linux or macOS.
* [Blog Roundup][dotnet-blog]
* [Known issues](../5.0-known-issues.md)
* Resolves [NuGet package restore broken on .NET 5+ with Removal of Trust of Verisign CA](https://github.com/dotnet/announcements/issues/180)
* .NET SDK 5.0.202 includes fixes to the runtime and Windows SDK projections with C#/WinRT v1.2.2, including several memory leak fixes. These fixes are for developers targeting a specific Windows SDK version in their project's `TargetFramework`. Refer to the C#/WinRT v1.2.2 [release notes](https://github.com/microsoft/CsWinRT/releases/tag/1.2.2.210413.1) for more details.
Release feature and bug lists:.
* [Runtime](https://github.com/dotnet/runtime/issues?q=milestone%3A5.0.6+is%3Aclosed+label%3Aservicing-approved)
* [ASP.NET Core](https://github.com/dotnet/aspnetcore/issues?q=milestone%3A5.0.6+is%3Aclosed+label%3Aservicing-approved)
* [Winforms](https://github.com/dotnet/winforms/issues?q=milestone%3A5.0.6+is%3Aclosed+label%3Aservicing-approved)
### Microsoft Security Advisory CVE-2021-31204 | .NET Core Elevation of Privilege Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0 and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
An elevation of privilage vulnerability exists in .NET 5.0 and .NET Core 3.1 when a user runs a single file application on Operating Systems based on Linux or macOS.
## Feedback