Rocky Linux: RLSA-2022:6595 nodejs and nodejs-nodemon security and bug fix update
Summary
An update for nodejs and nodejs-nodemon is now available for Rocky Linux 9. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs (16.16.0), nodejs-nodemon (2.0.19). (BZ#2124230, BZ#2124233) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
RPMs
References
No References
CVEs
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3807.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33987.json
Fixes
https://bugzilla.redhat.com/show_bug.cgi?id=1907444
https://bugzilla.redhat.com/show_bug.cgi?id=1945459
https://bugzilla.redhat.com/show_bug.cgi?id=1964461
https://bugzilla.redhat.com/show_bug.cgi?id=2007557
https://bugzilla.redhat.com/show_bug.cgi?id=2098556
https://bugzilla.redhat.com/show_bug.cgi?id=2102001
https://bugzilla.redhat.com/show_bug.cgi?id=2105422
https://bugzilla.redhat.com/show_bug.cgi?id=2105426
https://bugzilla.redhat.com/show_bug.cgi?id=2105428
https://bugzilla.redhat.com/show_bug.cgi?id=2105430
https://bugzilla.redhat.com/show_bug.cgi?id=2121019
https://bugzilla.redhat.com/show_bug.cgi?id=2124299