[CLSA-2025:1765908963] Fix CVE(s): CVE-2024-22025

Type:

security

Severity:

Moderate

Release date:

2025-12-16 18:16:07 UTC

Description:

   * SECURITY UPDATE: Node.js zlib denial of service vulnerability
     - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
       is full to prevent resource exhaustion during decompression
     - CVE-2024-22025

Updated packages:

alt-nodejs14-docs_14.21.3-14_amd64.deb
sha:1b0aaf127e71dd0ac850800fe297d805ec80a22a
alt-nodejs14-nodejs_14.21.3-14_amd64.deb
sha:bd137f379c3936180401e65c41499f92c1cc1a53
alt-nodejs14-nodejs-devel_14.21.3-14_amd64.deb
sha:41ac89e0ed9f2e333e1c807eb1c4b00cff169d39
alt-nodejs14-npm_6.14.18-14.21.3.14_amd64.deb
sha:a93fdb416366e54d2d191a07e3bac6f97d3cc08b

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.