Oracle Linux 8 ELSA-2023-7205 Critical Node.js Security Update

oracle

November 23, 2023

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

nodejs [1:20.8.1-1] - Update node and nghttp - Add fips patch - Fixes CVE-2023-44487 (nghttp) - Fixes CVE-2023-45143, CVE-2023-39331, CVE-2023-39332, CVE-2023-38552, CVE-2023-39333 nodejs-nodemon [3.0.1-1] - Rebase to 3.0.1 - Resolves: CVE-2022-25883 nodejs-packaging

Topics Covered

security advisory security issue update critical software patch Oracle Linux Node.js

SRPMs

https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-20.8.1-1.module+el8.9.0+90082+b6a613a6.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.src.rpm

x86_64

nodejs-20.8.1-1.module+el8.9.0+90082+b6a613a6.x86_64.rpm nodejs-devel-20.8.1-1.module+el8.9.0+90082+b6a613a6.x86_64.rpm nodejs-docs-20.8.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-full-i18n-20.8.1-1.module+el8.9.0+90082+b6a613a6.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm npm-10.1.0-1.20.8.1.1.module+el8.9.0+90082+b6a613a6.x86_64.rpm

aarch64

nodejs-docs-20.8.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm nodejs-20.8.1-1.module+el8.9.0+90082+b6a613a6.aarch64.rpm nodejs-devel-20.8.1-1.module+el8.9.0+90082+b6a613a6.aarch64.rpm nodejs-full-i18n-20.8.1-1.module+el8.9.0+90082+b6a613a6.aarch64.rpm npm-10.1.0-1.20.8.1.1.module+el8.9.0+90082+b6a613a6.aarch64.rpm

Severity

critical

Lowest

Low

Medium

High

Critical

Related CVEs: CVE-2023-38552 CVE-2023-39331 CVE-2023-39332 CVE-2023-39333 CVE-2023-44487 CVE-2023-45143

Topics Covered

security advisory security issue update critical software patch Oracle Linux Node.js

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Oracle Linux 8 ELSA-2023-7205 Critical Node.js Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Oracle Linux 8 ELSA-2023-7205 Critical Node.js Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!