[CLSA-2026:1775057560] Fix CVE(s): CVE-2026-21218
Type:
security
Severity:
Important
Release date:
2026-04-01 15:32:46 UTC
Description:
* SECURITY UPDATE: COSE header validation bypass via indefinite-length CBOR - debian/patches/CVE-2026-21218.patch: fix DecodeBucket and AreAllMandatoryHeadersPresent to iterate CBOR maps/arrays using PeekState loop instead of length-based for loop, preventing indefinite-length encodings from skipping header validation; wrap ArgumentException from CoseHeaderMap.Add into CryptographicException - CVE-2026-21218
Updated packages:
  • aspnetcore-runtime-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:c3bfc29ed8f37507d4dfce7662284d7ceb0d4653
  • aspnetcore-targeting-pack-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:e5cc49b98363df792109ecaea4895e317cb29e0d
  • dotnet7_7.0.120-1+tuxcare.els6_amd64.deb
    sha:daea1bdb485884dc2f220410f1e0fae4eea148f7
  • dotnet7-apphost-pack-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:5d4438a9f4211494e5f62f5590ed97f6ba2a518e
  • dotnet7-host-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:29222770bdd9abbaded18e78b80a6ea477e2332e
  • dotnet7-hostfxr-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:cd7e8b1d0b085c365acbe8cf123e6796c727e543
  • dotnet7-runtime-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:88113770674b313e51bef184d51921cf68252510
  • dotnet7-sdk-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:2a64bd7d5c85f7ab051795d4dd901243524a81b1
  • dotnet7-sdk-7.0-source-built-artifacts_7.0.120-1+tuxcare.els6_amd64.deb
    sha:ffd365a1220a6547f2bd4823739fe4f515d0a897
  • dotnet7-targeting-pack-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:33b2ce5e2a44fb99047b3480665312b4b47438d2
  • dotnet7-templates-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:711c69653c681603040478243f192bf4d2e50c43
  • netstandard-targeting-pack-2.1-7.0_7.0.120-1+tuxcare.els6_amd64.deb
    sha:2059d4967525ecad608a352fd9f02197a676effb
  • aspnetcore-runtime-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:f5ebbdeffe6c0fd356a1b45c70b503ed59945377
  • aspnetcore-targeting-pack-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:cef4346f188034fbfc0302f43ca34b53d3474a48
  • dotnet7_7.0.120-1+tuxcare.els6_arm64.deb
    sha:b04a539477acc09b53f197dc3dfc3d9ef96095f4
  • dotnet7-apphost-pack-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:eaae217adc69b437370a4c0d7d042880c9143e8e
  • dotnet7-host-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:64b99852a66fd6a29fb0a8d7e6f07d9f3df4a867
  • dotnet7-hostfxr-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:6350fd27d0f7d4b53d9cdc5705c8919adb71dcb3
  • dotnet7-runtime-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:67347b9348675d81556e9889d157089c6df8efdc
  • dotnet7-sdk-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:1fa8f03e4f726efec4f619e1303cbbc85c3845a6
  • dotnet7-sdk-7.0-source-built-artifacts_7.0.120-1+tuxcare.els6_arm64.deb
    sha:13d4c752e34d3c41c97fd8aba2643b2347a91a35
  • dotnet7-targeting-pack-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:56d6c7ce6d878493433411e5a5436455e345f96f
  • dotnet7-templates-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:51a91246739c66eef42fd97e46cf61d597ba1206
  • netstandard-targeting-pack-2.1-7.0_7.0.120-1+tuxcare.els6_arm64.deb
    sha:f90237b9bcc16f5e6834becf5970a34037bc276b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.