Release date:
2025-12-01 16:35:58 UTC
Description:
* SECURITY UPDATE: Node.js policy integrity check bypass vulnerability
- debian/patches/CVE-2023-38552.patch: use tamper-proof integrity check
function to prevent tampering with Hash class internals in policy
mechanism
- CVE-2023-38552
Updated packages:
-
alt-nodejs14-docs_14.21.3-9_amd64.deb
sha:40500e7c2ca330a048e55032e60a1100fadc7392
-
alt-nodejs14-nodejs_14.21.3-9_amd64.deb
sha:efd6ffe6c0be387781dfddd2b66e3f0a4cd9cf6f
-
alt-nodejs14-nodejs-devel_14.21.3-9_amd64.deb
sha:c53d0bb4422655fe45e77333a8c928380c4a68d0
-
alt-nodejs14-npm_6.14.18-14.21.3.9_amd64.deb
sha:8390a89388fd9b17b4fa1c4c78588d75e4e0f4e8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
