[CLSA-2025:1765905632] Fix CVE(s): CVE-2024-22025

Type:

security

Severity:

Moderate

Release date:

2025-12-16 17:20:36 UTC

Description:

   * SECURITY UPDATE: Node.js zlib denial of service vulnerability
     - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
       is full to prevent resource exhaustion during decompression
     - CVE-2024-22025

Updated packages:

alt-nodejs16-docs_16.20.2-8_amd64.deb
sha:093eff615a57d8e4c4686063487e0057c2576e62
alt-nodejs16-nodejs_16.20.2-8_amd64.deb
sha:348d7d81ee648f6799913bb755f0d4c663cf5942
alt-nodejs16-nodejs-devel_16.20.2-8_amd64.deb
sha:6010a2416cdd4cbdd25c09fd1357dd66eb880e4c
alt-nodejs16-npm_8.19.4-16.20.2.8_amd64.deb
sha:bb12e2f200b0624152ae6c3383627891b78c3d83

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.