Release date:
2025-10-03 15:46:14 UTC
Description:
* SECURITY UPDATE: Node.js SignTraits::DeriveBits() remote crash vulnerability
- debian/patches/CVE-2025-23166.patch: fix incorrect ThrowException() call
in background thread to prevent process crash
- CVE-2025-23166
Updated packages:
-
alt-nodejs18-docs_18.20.8-1+tuxcare.els1_amd64.deb
sha:c68925fea14e114507f08e1d3b6a9b366b0ab5cf
-
alt-nodejs18-nodejs_18.20.8-1+tuxcare.els1_amd64.deb
sha:9acf8aa3138e0d57704d989b23b6536065209876
-
alt-nodejs18-nodejs-devel_18.20.8-1+tuxcare.els1_amd64.deb
sha:bc051ee786344c007410284479608583af0d3c84
-
alt-nodejs18-npm_10.8.2-18.20.8.1_amd64.deb
sha:e1f1dff642d584ea5d73a769b3396fd4ac974bf4
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
