Merge pull request #4682 from dotnet/rbhanda-patch-1
Update Release notes with Github Announcement for May release
This commit is contained in:
commit
4e184a78a2
|
@ -74,6 +74,8 @@ Microsoft is aware of a denial of service vulnerability which exists when .NET C
|
|||
|
||||
A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core application.
|
||||
|
||||
For further information visit [Github Announcement](https://github.com/dotnet/announcements/issues/156)
|
||||
|
||||
### Additional fixes in this release
|
||||
* [CoreFX](https://github.com/dotnet/corefx/issues?utf8=%E2%9C%93&q=milestone%3A2.1.18+label%3Aservicing-approved)
|
||||
|
||||
|
|
|
@ -72,6 +72,8 @@ Microsoft is aware of a denial of service vulnerability which exists when .NET C
|
|||
|
||||
A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core application.
|
||||
|
||||
For more information, see the [Github announcement](https://github.com/dotnet/announcements/issues/156).
|
||||
|
||||
### [CVE-2020-1161: ASP.NET Core Denial of Service Vulnerability](https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1161)
|
||||
|
||||
Microsoft is releasing this security advisory to provide information about a vulnerability in ASP.NET Core. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
|
||||
|
@ -82,6 +84,8 @@ A remote unauthenticated attacker could exploit this vulnerability by issuing sp
|
|||
|
||||
The update addresses the vulnerability by correcting how the ASP.NET Core web application handles web requests.
|
||||
|
||||
For more information, see the [Github announcement](https://github.com/aspnet/Announcements/issues/416).
|
||||
|
||||
### Additional fixes in this release
|
||||
|
||||
* [CoreCLR](https://github.com/dotnet/coreclr/issues?utf8=%E2%9C%93&q=milestone%3A3.1.4+label%3Aservicing-approved)
|
||||
|
@ -162,4 +166,3 @@ The update addresses the vulnerability by correcting how the ASP.NET Core web ap
|
|||
[dotnet-sdk-win-x86.zip]: https://download.visualstudio.microsoft.com/download/pr/c29c71b2-87fd-4054-89d1-48c257265d03/ef377454ac4a0d520cd97950d0d006fc/dotnet-sdk-3.1.104-win-x86.zip
|
||||
|
||||
[//]: # ( Symbols )
|
||||
|
||||
|
|
Loading…
Reference in a new issue