Visual Studio Blog:

released May 14th, 2024

Summary of What's New in this release

• The "Xamarin" and "Xamarin Profiler" installer components have been marked "Out of support".
• This release also includes an OpenSSL update to v3.2.1

Security advisories addressed

• CVE-2024-32002 Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution.
• CVE-2024-32004 Remote Code Execution while cloning special-crafted local repositories
• CVE-2024-30045 A Remote Code Execution vulnerability exists in .NET 7.0 and .NET 8.0 where a stack buffer overrun occurs in .NET Double Parse routine.
• CVE-2024-30046 A Vulnerability exists in Microsoft.AspNetCore.Server.Kestrel.Core.dll where a dead-lock can occur resulting in Denial of Service.

 Source:

https://learn.microsoft.com/en-us/vi...e-notes#17.9.7

Posted By: Brink
14 May 2024