Release date:
2025-11-21 13:29:40 UTC
Description:
* SECURITY UPDATE: Node.js policy integrity check bypass vulnerability
- debian/patches/CVE-2023-38552.patch: use tamper-proof integrity check
to prevent forged checksums and tampering with Hash class internals
in the policy mechanism
- CVE-2023-38552
Updated packages:
-
alt-nodejs16-docs_16.20.2-3_amd64.deb
sha:76f64b54e2df793e26bf2b57fc7eebd0190afade
-
alt-nodejs16-nodejs_16.20.2-3_amd64.deb
sha:7a185424e4222412089eeb0fe2602306a063d9d4
-
alt-nodejs16-nodejs-devel_16.20.2-3_amd64.deb
sha:ee39cd51f070532a2947db276e6449751e02ba9d
-
alt-nodejs16-npm_8.19.4-16.20.2.3_amd64.deb
sha:5bb84f30f69aecc13179dbefe60036c0d8dcc5d7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
