NuGet 5.11 Release Notes

Article
02/13/2024

NuGet distribution vehicles:

NuGet version	Available in Visual Studio version	Available in .NET SDK(s)
5.11.0	Visual Studio 2019 version 16.11	5.0.400¹
5.11.2	Visual Studio 2019 version 16.11.16	N/A
5.11.3	N/A	N/A
5.11.5	N/A	N/A
5.11.6	N/A	N/A

¹ Installed with Visual Studio 2019 with .NET Core workload

Note

Visual Studio 16.11, MSBuild 16.11, and .NET 5.0.400+ requires NuGet.exe 5.11 or later.

Summary: What's New in 5.11.6

[Security]: Microsoft Security Advisory CVE-2024-0057 | NuGet Client Security Feature bypass Vulnerability - #12653

Summary: What's New in 5.11.5

[Security]: Microsoft Security Advisory CVE-2023-29337 | NuGet Client Remote Code Execution Vulnerability - #12653

Note

There is a behavior breaking change on Linux. The temp folder location, where NuGet stores temporary files during its various operations, has changed from /tmp/NuGetScratch to /tmp/NuGetScratch<username>. E.g. for user User1, the temp folder will be /tmp/NuGetScratchUser1.

Summary: What's New in 5.11.3

[Security]: Microsoft Security Advisory CVE-2022-41032 | .NET Elevation of Privilege Vulnerability - #12149

Summary: What's New in 5.11.2

[Security]: Microsoft Security Advisory CVE-2022-30184 | .NET Information Disclosure Vulnerability - #11883

Summary: What's New in 5.11

Issues fixed in this release

Bugs:

Tools -> Options -> NuGet Package Manager string is truncated - #10779
Hang when the PackagesMissingStatusChanged event is fired - #10854
The NuGet client ignores the NO_PROXY setting - #10902

List of all issues fixed in this release - 5.11

List of commits in this release - 5.11

Feedback welcome

Your feedback is important to us. If there are any problems with this release, check our GitHub Issues and Visual Studio Developer Community for existing issues. For new issues within NuGet, please report a GitHub Issue. For general NuGet experience issues, let us know via the Report a Problem option found in your favorite IDE under Help > Report a Problem.