.NET Blog

Free. Cross-platform. Open source. A developer platform for building all your apps.

Security - .NET Blog

.NET Framework February 2019 Security and Quality Rollup

February 13, 2019 Feb 13, 2019 02/13/19
Tara Overfield
Updated: February 15, 2019 A new Advisory on February 2019 Security update for Windows 10 update 1809 has been released today for issues customers have reported with .NET 4.8 Preview and this security update for Windows 10 update 1809 installed.   Updated: February 14, 2019 Added the previously released previous release ...

.NET Core February 2019 Updates – 1.0.14, 1.1.11, 2.1.8 and 2.2.2

February 12, 2019 Feb 12, 2019 02/12/19
Lee Coward
The latest .NET Core updates are available on the .NET Core download page. This update is also included in the Visual Studio 15.0.21 (.NET Core 1.0 and 1.1) and 15.9.7 (.NET Core 1.0, 1.1 and 2.1) updates, which is also releasing today. See the .NET Core release notes ( 1.0.14 | 1.1.11 | 2.1.8 | 2.2.2 ) for details on the release including a issues fixed and affected packages.

.NET Core January 2019 Updates – 2.1.7 and 2.2.1

January 8, 2019 Jan 8, 2019 01/8/19
Lee Coward
Today, we are releasing the .NET Core January 2019 Update. These updates contain security and reliability fixes. .NET Core 2.1.7 and .NET Core SDK 2.1.503 ( Download | Release Notes ) .NET Core 2.2.1 and .NET Core SDK 2.2.102 ( Download | Release Notes ) Security CVE-2019-0545: .NET Core Information Disclosure Vulnerability The ...

.NET Framework January 2019 Security and Quality Rollup

January 8, 2019 Jan 8, 2019 01/8/19
Tara Overfield
Today, we are releasing the January 2019 Security and Quality Rollup. Security CVE-2019-0545 – Windows Security Feature Bypass Vulnerability This security update resolves a vulnerability in Microsoft .NET Framework that may cause an information disclosure that allows bypassing Cross-origin Resource Sharing (CORS) configurations. An ...

.NET Framework December 2018 Security and Quality Rollup

December 11, 2018 Dec 11, 2018 12/11/18
Tara Overfield
Today, we are releasing the December 2018 Security and Quality Rollup. Security CVE-2018-8540 – Windows Remote Code Execution Vulnerability This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsoft .NET Framework doesn't validate input correctly. The attacker who ...