.NET February 2022 Updates – 6.0.2 and 5.0.14

Rahul Bhandari (MSFT)

February 8th, 202210 0

Today, we are releasing the .NET February 2022 Updates. These updates contain reliability and security improvements. See the individual release notes for details on updated packages.

You can download 6.0.2 and 5.0.14 versions for Windows, macOS, and Linux, for x86, x64, Arm32, and Arm64.

Improvements

Security

CVE-2022-21986: .NET Denial of Service Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0 and .NET 5.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

A Denial-of-Service vulnerability exists in .NET 5.0 and .NET 6.0 where Kestrel overpooling of HTTP/2 and HTTP/3 request headers may lead to denial of service.

Deployment Update

Customers that have opted to receive .NET Core updates via the Microsoft Update channel will be offered updates to the Hosting Bundle starting with the December 2021 update. Updates for other .NET Core bundles (.NET Core Runtime, ASP.NET Core Runtime, Windows Desktop Runtime, and SDK) have been offered via Microsoft Update to customers that opt in since December 2020. See this blog post for more information.

Visual Studio

See release notes for Visual Studio compatibility for .NET 6.0 and .NET 5.0.

.NET 5.0 End of life

.NET 5.0 will reach end of life on May 08, 2022, as described in .NET Releases and per .NET Release Policies. After that time, .NET 5.0 patch updates will no longer be provided. We recommend that you move any .NET 5.0 applications and environments to .NET 6.0. It’ll be an easy upgrade in most cases.

The .NET Releases page is the best place to look for release lifecycle information. Knowing key dates helps you make informed decisions about when to upgrade or make other changes to your software and computing environment.

Rahul Bhandari (MSFT) Program Manager, .NET

Read next

Happy 20th Anniversary, .NET!
Today marks 20 years since Visual Studio .NET launched and the first version of the .NET platform was released. We’re celebrating all month long on Twitter #dotNETLovesMe and we encourage you to tune into a special celebration broadcast, February 14, 9:00am Pacific Time on www.dot.net.
Beth Massi
February 13, 2022
6 comments

10 comments

Discussion is closed. Login to edit/delete existing comments.

  • Jason Baginski 0

    WinForm apps disappear from the taskbar/tray when running the 6.0.2 upgrade. They don’t actually close as you can still find them in task manager. Leaving them “stuck” where you have to kill them in task manager and relaunch them.

  • Syed Naeem Hussain Shah 0

    Hi
    during publish if i am changing the prerequisite for update my clients software.
    when client receive update it is installing updates but not installing prerequisite automatic its showing to download from web and install manually.
    like i.e currently my pos using .net 5 but when i change it to .net 6 during publish then its not installing .net 6 automatically.
    Thanks

  • Alexey Leonovich 0

    We recommend that you move any .NET 5.0 applications and environments to .NET 6.0. It’ll be an easy upgrade in most cases.
    That is not an easy upgrade in most cases – because Visual Studio 2019 lacks .NET 6.0 development support. So upgrading to .NET 6.0 requires purchasing new Visual Studio 2022 licenses for all company.
    So for many companies situation is the following: .NET 5.0 – EOL 8.5.2022, .NET 3.1 – EOL 3.12.2022, upgrading to .NET 6.0 costs lots of money – deadend?
    It was a very unfair move by Microsoft to allow .NET 6.0 development with Visual Studio 2019 till .NET 6.0-preview4 and later make it exclusive for Visual Studio 2022.

    If MS will allow to use VS 2019 key to unlock VS 2022 (same way like Windows 7 -> Windows 10) it will be perfect. Or supply some VS 2019 to VS 2022 upgrade discount.

    https://developercommunity.visualstudio.com/t/upgrade-option-from-visual-studio-2019-to-visual-s/1547885

    • Someone 0

      You should use Rider or Visual Studio Code for developing software based on .NET. It is not needed to choose Visual Studio at all.

      The problem with Visual Studio is that it is not cross-platform IDE.

  • Eaton 0

    I think there is a critical issue with the WinForms portion of the update. Opened issue here.

  • André R. 0

    On Mac ARM64:
    – dotnet run does not work (builds but just exists after that with no error/warning)
    – VS4Mac beta crashes on attempts to run (with debug)

    Downgrading to 6.0.1

  • Mike M 0

    1) When will .NET Runtime 6.0.2 be available on Azure App Services (Windows & Linux)?
    2) Can .NET App (deployed as “Framework-Dependent”) that uses NuGet packages (eg: Microsoft.EntityFrameworkCore.SqlServer version 6.0.2) run on Azure App Service that does not have latest version of .NET Runtime 6.0.2?

  • Mark Stega 0

    Microsoft update gave me the 5.0.14 & 6.0.2 updates.

    However, while I have Microsoft.AspNetCore.App & Microsoft.NETCore.App at 6.0.2 shown in “dotnet –info” there is no Microsoft.WindowsDesktop.App at version 6.0.2

    [EDIT] I have all three runtimes at 5.0.14

    So it seems like an incomplete update.

Feedback usabilla icon