Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Oracle Linux 9 ELSA-2025-1446 critical: nodejs security issue

oracle
Calendar Grey February 17, 2025
Oracle Linux Logo Esm H88
The Oracle Linux Security Advisory ELSA-2025-1446 provides enhancements for nodejs, targeting moderate vulnerabilities and corrections.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

nodejs [1:18.20.6-1] - Update to version 18.20.6 Resolves: RHEL-76801 Fixes: CVE-2025-23085 [1:18.20.4-1] - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 [1:18.20.2-2] - Removes .ps1 files nodejs-nodemon nodejs-packaging

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.src.rpm

x86_64

nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.x86_64.rpm

aarch64

nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.aarch64.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-22150 CVE-2025-23085

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here