Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Rocky Linux 9 RLSA-2026-7501 Node.js Critical Vulnerability Patch

rocky
Calendar Grey April 9, 2026
Rockylinux Esm H88
Critical update for Rocky Linux nodejs addresses significant security issues, enhancing protection against denial of service attacks.
Important: nodejs:22 security update

Summary

An update is available for nodejs, module.nodejs-packaging, nodejs-packaging, module.nodejs, nodejs-nodemon, module.nodejs-nodemon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40017+f0db1785.noarch.rpm

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40018+a011993d.noarch.rpm

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40022+9ecc286c.noarch.rpm

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40017+f0db1785.src.rpm

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40018+a011993d.src.rpm

nodejs-nodemon-0:3.0.1-1.module+el9.7.0+40022+9ecc286c.src.rpm

nodejs-packaging-0:2021.06-6.module+el9.7.0+40052+e32ea525.noarch.rpm

nodejs-packaging-0:2021.06-6.module+el9.7.0+40052+e32ea525.src.rpm

nodejs-packaging-bundler-0:2021.06-6.module+el9.7.0+40052+e32ea525.noarch.rpm

v8-12.4-devel-3:12.4.254.21-1.22.22.2.1.module+el9.7.0+40150+8a155d8a.s390x.rpm

v8-12.4-devel-3:12.4.254.21-1.22.22.2.1.module+el9.7.0+40150+8a155d8a.x86_64.rpm

nodejs-1:22.22.2-1.module+el9.7.0+40150+8a155d8a.aarch64.rpm

nodejs-1:22.22.2-1.module+el9.7.0+40150+8a155d8a.ppc64le.rpm

nodejs-1:22.22.2-1.module+el9.7.0+40150+8a155d8a.s390x.rpm

nodejs-1:22.22.2-1.module+el9.7.0+40150+8a155d8a.src.rpm

Read the Full Advisory

References

No references

CVES

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1525

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1526

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1528

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21710

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2229

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25547

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-26996

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27135

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27904

Severity
important

Name: RLSA-2026:7302
Affected Products: Rocky Linux 9

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2436942

https://bugzilla.redhat.com/show_bug.cgi?id=2441268

https://bugzilla.redhat.com/show_bug.cgi?id=2442922

https://bugzilla.redhat.com/show_bug.cgi?id=2447142

https://bugzilla.redhat.com/show_bug.cgi?id=2447143

https://bugzilla.redhat.com/show_bug.cgi?id=2447144

https://bugzilla.redhat.com/show_bug.cgi?id=2447145

https://bugzilla.redhat.com/show_bug.cgi?id=2448754

https://bugzilla.redhat.com/show_bug.cgi?id=2453151


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here