[CLSA-2025:1765977098] Fix CVE(s): CVE-2024-22025

Type:

security

Severity:

Moderate

Release date:

2025-12-17 13:11:43 UTC

Description:

   * SECURITY UPDATE: Node.js zlib denial of service vulnerability
     - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
       is full to prevent resource exhaustion during decompression
     - CVE-2024-22025

Updated packages:

alt-nodejs12-docs_12.22.12-14_amd64.deb
sha:4df105f5219b27e56d5354e17b550c4a0b5c0836
alt-nodejs12-nodejs_12.22.12-14_amd64.deb
sha:270d1f978b3dce1f92aa1f899525f46babd54403
alt-nodejs12-nodejs-devel_12.22.12-14_amd64.deb
sha:130790e2b1fa713641e9cc5e1bf05d46dc66756d
alt-nodejs12-npm_6.14.16-12.22.12.14_amd64.deb
sha:e4f9cb6e5bf0fffe9b3f90409ab7906078537627

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.