.NET Blog

Free. Cross-platform. Open source. A developer platform for building all your apps.

Security - .NET Blog

.NET Framework February Security and Quality Rollup

February 9, 2021 Feb 9, 2021 02/9/21
Tara Overfield
Revised 6/8/2021: On June 8th, 2021, this update was released to replace a previous update to address a “revocation server was offline” error that may occur during installation. If you've already installed a previous release of this update, no action is required. Revised 4/15/2021: On April 13th, 2021, this update was released to ...

.NET Framework July 2020 Security and Quality Rollup Updates

July 14, 2020 Jul 14, 2020 07/14/20
Tara Overfield
Revised 6/8/2021: On June 8th, 2021, this update was released to replace a previous update to address a “revocation server was offline” error that may occur during installation. If you've already installed a previous release of this update, no action is required. Revised 4/15/2021: On April 13th, 2021, this update was released to ...

.NET Core July 2019 Updates – 2.1.12 and 2.2.6

July 9, 2019 Jul 9, 2019 07/9/19
Vivek Mishra
Today, we are releasing the .NET Core July 2019 Update. These updates contain security and reliability fixes. See the individual release notes for details on updated packages. NOTE: If you are a Visual Studio user, there are MSBuild version requirements so use only the .NET Core SDK supported for each Visual Studio version. Information ...

.NET Core April 2019 Updates – 2.1.10 and 2.2.4

April 9, 2019 Apr 9, 2019 04/9/19
Vivek Mishra
Today, we are releasing the .NET Core April 2019 Update. These updates contain security and reliability fixes. See the individual release notes for details on included fixes. Security Microsoft Security Advisory CVE-2019-0815: ASP.NET Core Denial of Service Vulnerability A denial of service vulnerability exists in ASP.NET Core 2...

Submit to the Applied F# Challenge!

February 5, 2019 Feb 5, 2019 02/5/19
Phillip Carter
This post was written by Lena Hall, a Senior Cloud Developer Advocate at Microsoft. F# Software Foundation has recently announced their new initiative — Applied F# Challenge! We encourage you to participate and send your submissions about F# on Azure through the participation form. Applied F# Challenge is a new initiative to ...

.NET Framework January 2019 Security and Quality Rollup

January 8, 2019 Jan 8, 2019 01/8/19
Tara Overfield
Today, we are releasing the January 2019 Security and Quality Rollup. Security CVE-2019-0545 – Windows Security Feature Bypass Vulnerability This security update resolves a vulnerability in Microsoft .NET Framework that may cause an information disclosure that allows bypassing Cross-origin Resource Sharing (CORS) configurations. An ...

.NET Framework December 2018 Security and Quality Rollup

December 11, 2018 Dec 11, 2018 12/11/18
Tara Overfield
Today, we are releasing the December 2018 Security and Quality Rollup. Security CVE-2018-8540 – Windows Remote Code Execution Vulnerability This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsoft .NET Framework doesn't validate input correctly. The attacker who ...