Release date:
2025-12-10 10:12:09 UTC
Description:
* SECURITY UPDATE: Marvin Attack vulnerability in Node.js
– debian/patches/CVE-2023-46809.patch: fixes a timing‑side‑channel
flaw in the RSA PKCS#1 v1.5 decryption logic, preventing a Marvin‑style
padding‑oracle attack that could allow recovery of sensitive data.
– CVE-2023-46809
Updated packages:
-
alt-nodejs16-docs_16.20.2-5_amd64.deb
sha:87ed92adf6eaa95e47b39f9c16dcc875b12d5814
-
alt-nodejs16-nodejs_16.20.2-5_amd64.deb
sha:b83d7c54fcd50460744c2308e6776293e2b78c1e
-
alt-nodejs16-nodejs-devel_16.20.2-5_amd64.deb
sha:cd431b46578660a97edc2cde1279b9c34d940714
-
alt-nodejs16-npm_8.19.4-16.20.2.5_amd64.deb
sha:205d96d65d15ca36402118248fa484bf7301f68c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
