Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Oracle Linux 8: ELSA-2024-1444 Critical DoS Risk Nodejs Update

oracle
Calendar Grey March 22, 2024
Oracle Linux Logo Esm H88
Oracle Linux Security Update ELSA-2024-1444 introduces vital enhancements for nodejs that mitigate Denial of Service vulnerabilities in Oracle Linux.
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

nodejs [1:16.20.2-4.0.1] - reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks Resolves: CVE-2024-22019 nodejs-nodemon nodejs-packaging [26-1] - nodejs.prov: find namespaced bundled dependencies - Apply https://src.fedoraproject.org/rpms/nodejs-packaging/c/e24e7df

Topics%20covered

Topics Covered

security advisory security issue DoS important update RPM Oracle Linux nodejs

SRPMs


Warning: Undefined array key "references" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/4180067_8ef039c68d1d756f705e7dee9ba3d15b on line 11

https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.9.0+90185+b2d3b544.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//nodejs-packaging-26-1.module+el8.9.0+90185+b2d3b544.src.rpm

x86_64

nodejs-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.x86_64.rpm nodejs-devel-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.x86_64.rpm nodejs-docs-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.noarch.rpm nodejs-full-i18n-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el8.9.0+90185+b2d3b544.noarch.rpm nodejs-packaging-26-1.module+el8.9.0+90185+b2d3b544.noarch.rpm npm-8.19.4-1.16.20.2.4.0.1.module+el8.9.0+90185+b2d3b544.x86_64.rpm

aarch64

nodejs-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.aarch64.rpm nodejs-devel-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.aarch64.rpm nodejs-docs-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.noarch.rpm nodejs-full-i18n-16.20.2-4.0.1.module+el8.9.0+90185+b2d3b544.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el8.9.0+90185+b2d3b544.noarch.rpm nodejs-packaging-26-1.module+el8.9.0+90185+b2d3b544.noarch.rpm npm-8.19.4-1.16.20.2.4.0.1.module+el8.9.0+90185+b2d3b544.aarch64.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2023-44487 CVE-2024-22019

Topics%20covered

Topics Covered

security advisory security issue DoS important update RPM Oracle Linux nodejs

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here