[CLSA-2025:1765977280] Fix CVE(s): CVE-2024-22025

Type:

security

Severity:

Moderate

Release date:

2025-12-17 13:14:44 UTC

Description:

   * SECURITY UPDATE: Node.js zlib denial of service vulnerability
     - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
       is full to prevent resource exhaustion during decompression
     - CVE-2024-22025

Updated packages:

alt-nodejs12-docs_12.22.12-14_amd64.deb
sha:1e0571584cbabe1ed81f9b781aa5955b6616df63
alt-nodejs12-nodejs_12.22.12-14_amd64.deb
sha:1811448a122eb39df4cd142e8a20cbe03a4d569d
alt-nodejs12-nodejs-devel_12.22.12-14_amd64.deb
sha:62c054f85025555eff1a5f26e15e238926690ac8
alt-nodejs12-npm_6.14.16-12.22.12.14_amd64.deb
sha:f876f3b840ca0eb2848b0bd2895b179f0896096a

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.