articleschannelstagsspacestoolkit
Microsoft Dev Blogs

.NET and .NET Framework January 2025 servicing releases updates

View Original
thumbnail

Table of Contents

  • Security Improvements
  • .NET Updates
  • .NET Framework Updates

Security Improvements

This month's updates include fixes for several CVEs, addressing remote code execution vulnerabilities, denial of service vulnerabilities, and elevation of privilege vulnerabilities in different versions of .NET and .NET Framework.

  • CVE-2025-21171: .NET Remote Code Execution Vulnerability in .NET 9.0
  • CVE-2025-21172: .NET Remote Code Execution Vulnerability in .NET 8.0, .NET 9.0
  • CVE-2025-21176: .NET and .NET Framework Denial of Service Vulnerability in .NET 8.0, .NET 9.0, .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1
  • CVE-2025-21173: .NET Elevation of Privilege Vulnerability in .NET 8.0, .NET 9.0

.NET Updates

.NET 8.0

  • Release Notes: 8.0.12
  • Installers and Binaries: 8.0.12
  • Container Images: Images available
  • Linux Packages: 8.0.12
  • Known Issues: Refer to documentation for details

.NET 9.0

  • Release Notes: 9.0.1
  • Installers and Binaries: 9.0.1
  • Container Images: Images available
  • Linux Packages: 9.0.1
  • Known Issues: Refer to documentation for details

.NET Improvements

  • ASP.NET Core: 9.0.1
  • EF Core: 8.0.12
  • Runtime: 8.0.12, 9.0.1
  • SDK: 8.0.12, 9.0.1

.NET Framework Updates

This month's .NET Framework updates include a mix of security and non-security updates. Refer to the release notes for more details on the changes made.

See You Next Month

Feel free to provide feedback on these combined service release blogs as we strive to keep you updated on the latest news and updates for .NET.