Release date:
2025-12-01 16:41:27 UTC
Description:
* SECURITY UPDATE: Node.js policy integrity check bypass vulnerability
- debian/patches/CVE-2023-38552.patch: use tamper-proof integrity check
function to prevent tampering with Hash class internals in policy
mechanism
- CVE-2023-38552
Updated packages:
-
alt-nodejs14-docs_14.21.3-9_amd64.deb
sha:fcd32a58fae2455d1f1e377b3622aee59f5fdf63
-
alt-nodejs14-nodejs_14.21.3-9_amd64.deb
sha:5e40a35c4ff1fca994f729911fb82c372fdbb258
-
alt-nodejs14-nodejs-devel_14.21.3-9_amd64.deb
sha:07a095ce1be218b3e9d3c774ce0c2a779c7e2c82
-
alt-nodejs14-npm_6.14.18-14.21.3.9_amd64.deb
sha:525635919359202e2936689a76895ed8b4de0f95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
