msbuild icon indicating copy to clipboard operation
msbuild copied to clipboard
verified publisher icon dotnet

CG alert cleaning on VS17.3

Open MichalPavlik opened this issue 1 year ago • 0 comments

Fixes # CVE-2024-38081, CVE-2024-38095

Summary

MSBuild 17.3 uses dependencies with known vulnerabilities.

Customer Impact

Using software without known vulnerabilities.

Regression?

No.

Testing

Existing automated tests.

Risk

Low - there are no functional changes.

Changes Made

Upgrade Microsoft.IO.Redist from 6.0.0 to 6.0.1, System.Formats.Asn1 from 6.0.0 to 6.0.1.

MichalPavlik avatar Oct 16 '24 11:10 MichalPavlik