Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Rocky Linux 9 Node.js Significant Upgrade Announcement RLSA-2026-2786

rocky
Calendar Grey February 18, 2026
Rockylinux Esm H88
Node.js security update available for Rocky Linux with fixes for multiple issues, including denial of service and permissions bypass.
Important: nodejs:24 security update

Summary

An update is available for nodejs, nodejs-nodemon, module.nodejs-packaging, nodejs-packaging, module.nodejs, module.nodejs-nodemon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

nodejs-nodemon-0:3.0.3-3.module+el9.7.0+40025+0e0cf6b2.noarch.rpm

nodejs-nodemon-0:3.0.3-3.module+el9.7.0+40025+0e0cf6b2.src.rpm

nodejs-packaging-0:2021.06-6.module+el9.7.0+40052+e32ea525.noarch.rpm

nodejs-packaging-0:2021.06-6.module+el9.7.0+40052+e32ea525.src.rpm

nodejs-packaging-bundler-0:2021.06-6.module+el9.7.0+40052+e32ea525.noarch.rpm

nodejs-1:24.13.0-1.module+el9.7.0+40084+5fab4181.aarch64.rpm

nodejs-1:24.13.0-1.module+el9.7.0+40084+5fab4181.ppc64le.rpm

nodejs-1:24.13.0-1.module+el9.7.0+40084+5fab4181.s390x.rpm

nodejs-1:24.13.0-1.module+el9.7.0+40084+5fab4181.src.rpm

nodejs-1:24.13.0-1.module+el9.7.0+40084+5fab4181.x86_64.rpm

nodejs-debuginfo-1:24.13.0-1.module+el9.7.0+40084+5fab4181.aarch64.rpm

nodejs-debuginfo-1:24.13.0-1.module+el9.7.0+40084+5fab4181.ppc64le.rpm

nodejs-debuginfo-1:24.13.0-1.module+el9.7.0+40084+5fab4181.s390x.rpm

nodejs-debuginfo-1:24.13.0-1.module+el9.7.0+40084+5fab4181.x86_64.rpm

nodejs-debugsource-1:24.13.0-1.module+el9.7.0+40084+5fab4181.aarch64.rpm

Read the Full Advisory

References

No references

CVES

https://www.cve.org/CVERecord?id=CVE-2025-55130

https://www.cve.org/CVERecord?id=CVE-2025-55131

https://www.cve.org/CVERecord?id=CVE-2025-55132

https://www.cve.org/CVERecord?id=CVE-2025-59465

https://www.cve.org/CVERecord?id=CVE-2025-59466

https://www.cve.org/CVERecord?id=CVE-2026-21637

Severity
important

Name: RLSA-2026:2781
Affected Products: Rocky Linux 9

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2431338

https://bugzilla.redhat.com/show_bug.cgi?id=2431340

https://bugzilla.redhat.com/show_bug.cgi?id=2431343

https://bugzilla.redhat.com/show_bug.cgi?id=2431349

https://bugzilla.redhat.com/show_bug.cgi?id=2431350

https://bugzilla.redhat.com/show_bug.cgi?id=2431352


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here