RHBA-2025:0305

Description

Red Hat Bug Fix Advisory: .NET 9.0 bug fix and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Systems

• redhat•aspnetcore-runtime-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•aspnetcore-runtime-dbg-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•aspnetcore-targeting-pack-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-apphost-pack-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-apphost-pack-9.0-debuginfo

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-host

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-host-debuginfo

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-hostfxr-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-hostfxr-9.0-debuginfo

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-runtime-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-runtime-9.0-debuginfo

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-runtime-dbg-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-sdk-9.0

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-sdk-9.0-debuginfo

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-sdk-9.0-source-built-artifacts

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-sdk-aot-9.0

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-sdk-aot-9.0-debuginfo

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-sdk-dbg-9.0

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet-targeting-pack-9.0

  < 0:9.0.1-1.el9_5 | < 0:9.0.1-1.el9_5

• redhat•dotnet-templates-9.0

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet9.0

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet9.0-debuginfo

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•dotnet9.0-debugsource

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

• redhat•netstandard-targeting-pack-2.1

  < 0:9.0.102-1.el9_5 | < 0:9.0.102-1.el9_5

References (22)

• https://access.redhat.com/errata/RHBA-2025:0305
• https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhba-2025_0305.json
• https://access.redhat.com/security/cve/CVE-2025-21171
• https://bugzilla.redhat.com/show_bug.cgi?id=2337958
• https://www.cve.org/CVERecord?id=CVE-2025-21171
• https://nvd.nist.gov/vuln/detail/CVE-2025-21171
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21171
• https://access.redhat.com/security/cve/CVE-2025-21172
• https://bugzilla.redhat.com/show_bug.cgi?id=2337927
• https://www.cve.org/CVERecord?id=CVE-2025-21172
• https://nvd.nist.gov/vuln/detail/CVE-2025-21172
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172
• https://access.redhat.com/security/cve/CVE-2025-21173
• https://bugzilla.redhat.com/show_bug.cgi?id=2337893
• https://www.cve.org/CVERecord?id=CVE-2025-21173
• https://nvd.nist.gov/vuln/detail/CVE-2025-21173
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21173
• https://access.redhat.com/security/cve/CVE-2025-21176
• https://bugzilla.redhat.com/show_bug.cgi?id=2337926
• https://www.cve.org/CVERecord?id=CVE-2025-21176
• https://nvd.nist.gov/vuln/detail/CVE-2025-21176
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21176