Discover Government News

Oracle Linux Security Advisory ELSA-2024-1438

http://linux.oracle.com/errata/ELSA-2024-1438.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-16.20.2-4.0.1.el9_3.x86_64.rpm
nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm
nodejs-full-i18n-16.20.2-4.0.1.el9_3.x86_64.rpm
nodejs-libs-16.20.2-4.0.1.el9_3.i686.rpm
nodejs-libs-16.20.2-4.0.1.el9_3.x86_64.rpm
npm-8.19.4-1.16.20.2.4.0.1.el9_3.x86_64.rpm

aarch64:
nodejs-16.20.2-4.0.1.el9_3.aarch64.rpm
nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm
nodejs-full-i18n-16.20.2-4.0.1.el9_3.aarch64.rpm
nodejs-libs-16.20.2-4.0.1.el9_3.aarch64.rpm
npm-8.19.4-1.16.20.2.4.0.1.el9_3.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-16.20.2-4.0.1.el9_3.src.rpm

Related CVEs:

CVE-2024-22019




Description of changes:

[1:16.20.2-4.0.1]
- reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks
  Resolves: CVE-2024-22019


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2024-1438: nodejs security Important Security Update

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[1:16.20.2-4.0.1] - reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks Resolves: CVE-2024-22019

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//nodejs-16.20.2-4.0.1.el9_3.src.rpm

x86_64

nodejs-16.20.2-4.0.1.el9_3.x86_64.rpm nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm nodejs-full-i18n-16.20.2-4.0.1.el9_3.x86_64.rpm nodejs-libs-16.20.2-4.0.1.el9_3.i686.rpm nodejs-libs-16.20.2-4.0.1.el9_3.x86_64.rpm npm-8.19.4-1.16.20.2.4.0.1.el9_3.x86_64.rpm

aarch64

nodejs-16.20.2-4.0.1.el9_3.aarch64.rpm nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm nodejs-full-i18n-16.20.2-4.0.1.el9_3.aarch64.rpm nodejs-libs-16.20.2-4.0.1.el9_3.aarch64.rpm npm-8.19.4-1.16.20.2.4.0.1.el9_3.aarch64.rpm

i386

Severity
Related CVEs: CVE-2024-22019

Related News