Oracle Linux 9 ELSA-2024-2853 Critical: Node.js Security Update

oracle

May 17, 2024

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

nodejs [1:20.12.2-2] - Backport nghttp2 patch for CVE-2024-28182 [1:20.12.2-1] - Rebase to version 20.12.0 Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 (node) Fixes: CVE-2024-25629 (c-ares) nodejs-nodemon nodejs-packaging

Topics Covered

security advisory security update security issue critical threat fix Oracle Linux Node.js

SRPMs

https://oss.oracle.com:443/ol9/SRPMS-updates//nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.src.rpm https://oss.oracle.com:443/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm https://oss.oracle.com:443/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm

x86_64

nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.x86_64.rpm

aarch64

nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.aarch64.rpm

Severity

critical

Lowest

Low

Medium

High

Critical

Related CVEs: CVE-2024-22025 CVE-2024-25629 CVE-2024-27982 CVE-2024-27983 CVE-2024-28182

Topics Covered

security advisory security update security issue critical threat fix Oracle Linux Node.js

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Oracle Linux 9 ELSA-2024-2853 Critical: Node.js Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Oracle Linux 9 ELSA-2024-2853 Critical: Node.js Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!