Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H900
SuSE

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Calendar White Jun 12, 2026
Low
Ubuntu Large Esm H900
Ubuntu

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Calendar White Jun 12, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Calendar White Jun 12, 2026
Informational
Debianlts Large Esm H800
Debian LTS

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

Calendar White Jun 12, 2026
Informational
Opensuse Large Esm H900
openSUSE

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Calendar White Jun 12, 2026
Critical
Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":556,"type":"x","order":1,"pct":78.75,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.25,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.18,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag%201security advisorymoderate severityrocky linux

Rocky Linux 9 RLSA-2022:6596 Important Python Vulnerability Patch

Moderate: nodejs and nodejs-nodemon security and bug fix update. {"type":"TYPE_SECURITY","shortCode":"RL","name":"RLSA-2022:6595","synopsis":"Moderate: nodejs and nodejs-nodemon security and bug fix update","severity":"SEVERITY_MODERATE","topic":"An update for nodejs and nodejs-nodemon is now available for Rocky Linux 9.\nRocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.","description":"Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \nThe following packages have been upgraded to a later upstream version: nodejs (16.16.0), nodejs-nodemon (2.0.19). (BZ#2124230, BZ#2124233)\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.","solution":null,"affectedProducts":["Rocky Linux 9"],"fixes":[{"ticket":"1907444","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=1907444","description":"CVE-2020-7788 nodejs-ini: Prototype pollution via malicious INI file"},{"ticket":"1945459","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=1945459","description":"CVE-2020-28469 nodejs-glob-parent: Regular expression denial of service"},{"ticket":"1964461","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=1964461","description":"CVE-2021-33502 nodejs-normalize-url: ReDoS for data URLs"},{"ticket":"2007557","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2007557","description":"CVE-2021-3807 nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes"},{"ticket":"2098556","sourceBy":"RedHat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2098556","description":"CVE-2022-29244 nodejs: npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace"},{"ticket":"2102001","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2102001","description":"CVE-2022-33987 nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets"},{"ticket":"2105422","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2105422","description":"CVE-2022-32212 nodejs: DNS rebinding in --inspect via invalid IP addresses"},{"ticket":"2105426","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2105426","description":"CVE-2022-32215 nodejs: HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding"},{"ticket":"2105428","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2105428","description":"CVE-2022-32214 nodejs: HTTP request smuggling due to improper delimiting of header fields"},{"ticket":"2105430","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2105430","description":"CVE-2022-32213 nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding"},{"ticket":"2121019","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2121019","description":"nodejs:16\/nodejs: Rebase to the latest Nodejs 16 release [rhel-9] [rhel-9.0.0.z]"},{"ticket":"2124299","sourceBy":"Red Hat","sourceLink":"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=2124299","description":"nodejs: Specify --with-default-icu-data-dir when using bootstrap build [rhel-9.0.0.z]"}],"cves":[{"name":"CVE-2021-3807","sourceBy":"Red Hat","sourceLink":"https:\/\/access.redhat.com\/hydra\/rest\/securitydata\/cve\/CVE-2021-3807.json","cvss3ScoringVector":"CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H","cvss3BaseScore":"7.5","cwe":"CWE-400"},{"name":"CVE-2022-33987","sourceBy":"RedHat","sourceLink":"https:\/\/access.redhat.com\/hydra\/rest\/securitydata\/cve\/CVE-2022-33987.json","cvss3ScoringVector":"CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:L\/A:N","cvss3BaseScore":"5.3","cwe":"CWE-601"}],"references":[],"publishedAt":"2023-01-25T21:21:29.189657Z","rpms":{},"rebootSuggested":false,"buildReferences":[]}. Node.js and nodemon have received a crucial security and bug resolution update for Rocky Linux 9, tackling several vulnerabilities with potential moderate implications.. Nodejs Update, Rocky Linux Security, Bug Fixes for Nodejs. . LinuxSecurity.com Team

Calendar%202 Jan 25, 2023 Rocky Linux
98
Ls Advisories Redhat Esm H240
Price Tag%201security advisoryRed Hatbug fix

Red Hat: RHSA-2022-6985-01 Moderate: Node.js 14 Security Fixes Released

An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: nodejs:14 security and bug fix update Advisory ID: RHSA-2022:6985-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6985 Issue date: 2022-10-18 CVE Names: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 CVE-2022-33987 ==================================================================== 1. Summary: An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix(es): * nodejs: DNS rebinding in --inspect via invalid IP addresses (CVE-2022-32212) * nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding (CVE-2022-32213) * nodejs: HTTP request smuggling due to improper delimiting of header fields (CVE-2022-32214) * nodejs: HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (CVE-2022-32215) * got: missing verification of requested URLs allows redirects to UNIX sockets (CVE-2022-33987) For more details aboutthe security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * nodejs:14/nodejs: rebase to latest upstream release (BZ#2106368) * nodejs:14/nodejs: Specify --with-default-icu-data-dir when using bootstrap build (BZ#2111419) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2102001 - CVE-2022-33987 nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets 2105422 - CVE-2022-32212 nodejs: DNS rebinding in --inspect via invalid IP addresses 2105426 - CVE-2022-32215 nodejs: HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding 2105428 - CVE-2022-32214 nodejs: HTTP request smuggling due to improper delimiting of header fields 2105430 - CVE-2022-32213 nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding 2106368 - nodejs:14/nodejs: rebase to latest upstream release [rhel-8.4.0.z] 6. Package List: Red Hat Enterprise Linux AppStream EUS(v.8.4): Source: nodejs-14.20.0-2.module+el8.4.0+16234+70f4adc8.src.rpm nodejs-nodemon-2.0.19-2.module+el8.4.0+16234+70f4adc8.src.rpm nodejs-packaging-23-3.module+el8.3.0+6519+9f98ed83.src.rpm aarch64: nodejs-14.20.0-2.module+el8.4.0+16234+70f4adc8.aarch64.rpm nodejs-debuginfo-14.20.0-2.module+el8.4.0+16234+70f4adc8.aarch64.rpm nodejs-debugsource-14.20.0-2.module+el8.4.0+16234+70f4adc8.aarch64.rpm nodejs-devel-14.20.0-2.module+el8.4.0+16234+70f4adc8.aarch64.rpm nodejs-full-i18n-14.20.0-2.module+el8.4.0+16234+70f4adc8.aarch64.rpm npm-6.14.17-1.14.20.0.2.module+el8.4.0+16234+70f4adc8.aarch64.rpm noarch: nodejs-docs-14.20.0-2.module+el8.4.0+16234+70f4adc8.noarch.rpm nodejs-nodemon-2.0.19-2.module+el8.4.0+16234+70f4adc8.noarch.rpm nodejs-packaging-23-3.module+el8.3.0+6519+9f98ed83.noarch.rpm ppc64le: nodejs-14.20.0-2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm nodejs-debuginfo-14.20.0-2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm nodejs-debugsource-14.20.0-2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm nodejs-devel-14.20.0-2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm nodejs-full-i18n-14.20.0-2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm npm-6.14.17-1.14.20.0.2.module+el8.4.0+16234+70f4adc8.ppc64le.rpm s390x: nodejs-14.20.0-2.module+el8.4.0+16234+70f4adc8.s390x.rpm nodejs-debuginfo-14.20.0-2.module+el8.4.0+16234+70f4adc8.s390x.rpm nodejs-debugsource-14.20.0-2.module+el8.4.0+16234+70f4adc8.s390x.rpm nodejs-devel-14.20.0-2.module+el8.4.0+16234+70f4adc8.s390x.rpm nodejs-full-i18n-14.20.0-2.module+el8.4.0+16234+70f4adc8.s390x.rpm npm-6.14.17-1.14.20.0.2.module+el8.4.0+16234+70f4adc8.s390x.rpm x86_64: nodejs-14.20.0-2.module+el8.4.0+16234+70f4adc8.x86_64.rpm nodejs-debuginfo-14.20.0-2.module+el8.4.0+16234+70f4adc8.x86_64.rpm nodejs-debugsource-14.20.0-2.module+el8.4.0+16234+70f4adc8.x86_64.rpm nodejs-devel-14.20.0-2.module+el8.4.0+16234+70f4adc8.x86_64.rpm nodejs-full-i18n-14.20.0-2.module+el8.4.0+16234+70f4adc8.x86_64.rpm npm-6.14.17-1.14.20.0.2.module+el8.4.0+16234+70f4adc8.x86_64.rpm These packages are GPG signed by RedHat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-32212 https://access.redhat.com/security/cve/CVE-2022-32213 https://access.redhat.com/security/cve/CVE-2022-32214 https://access.redhat.com/security/cve/CVE-2022-32215 https://access.redhat.com/security/cve/CVE-2022-33987 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY06+5NzjgjWX9erEAQiaqRAAhpKyHJTAukuosAMfI9O4+sv1Xbo666Cg 250PzdCk7Olv3jlhTEDRrxFMfrbI8uvfvZ7Wze2urUKzGAqgq8sY2e011VVqJcbd O2Qn3csPUrMYsU7yuI8tXyHpXY83rcPncYN9B0pbn73V+tS1HgTqzB2k06syiqXu 7JW4YjqpcqX7v1IcbOSS9iZOqrHDkKuBleexnQbER8kYQ1dapUOplElSaANteuJw VoNpxQXtg2XZvo3QZ0DgVRrAPq7WAjMpy3ovpScbOG5cgz4sUQ48TJ68ZwKGSO0U 6eBojualI5Wh73mpXjLIs1xAY9ovqTdnZl9Mf57fi+d8DjxbWCNmkotLkKgouMm7 oTB/S4dr0CHhMIH6/z0IyC7nGIdk3pVSvyELLDOjbJU8ys68is2sHqBzkCSxLqs5 47zOy4Vi7TxnG6b1FnOae3RVz4XyqF0mA4q5YaeS+ze8S2YAjmDWT51QcCk1KQIQ qyKo8xJNjLGiagz2gQ38kMRsKNJLmBEhhl7ZH91BK6i7UxudM/eG/RPD7ZWtUyJp +OmVyUlIkwZwZWQ6whGgAuZZmOgzSfzsSB1T8x24U19lRa8ZPXpTISttWTmQ1AD9 Z1sdfxtSeCQx6sd3fSV+VwUWY1gLRnE84qeICmjOJk9cXoRH+X5AWS09I5xyt9QV eKJYi8R2SCg=jJWB -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Node.js version 14 has a new update on Red Hat Enterprise Linux that resolves several moderate security vulnerabilities and introduces various bug fixes.. Red Hat Update, Node.js Security, Enterprise Linux Security, Linux Bug Fix, Node.js Advisory. . LinuxSecurity.com Team

Calendar%202 Oct 18, 2022 Red Hat
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":556,"type":"x","order":1,"pct":78.75,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.25,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.18,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here