Release date:
2026-05-22 22:23:16 UTC
Description:
* SECURITY UPDATE: memory leak in HTTP/2 on flow control window overflow
- debian/patches/CVE-2026-21714.patch: treat NGHTTP2_ERR_FLOW_CONTROL in
OnInvalidFrame so Http2Session is destroyed after invalid connection-level
WINDOW_UPDATE instead of leaking
- CVE-2026-21714
Updated packages:
-
alt-nodejs18-docs_18.20.8-12_amd64.deb
sha:ea02a69eda4b399c77b84da42cd77dd3977b90fe
-
alt-nodejs18-nodejs_18.20.8-12_amd64.deb
sha:5dd6c8a623b7c8a91264e504051e48d64f0e9d21
-
alt-nodejs18-nodejs-devel_18.20.8-12_amd64.deb
sha:cef18b23be66e98359af57d862a6fe7acf801ba2
-
alt-nodejs18-npm_10.8.2-18.20.8.12_amd64.deb
sha:3334a6f23b23ab4b822207661fcb622a712ef19d
-
alt-nodejs18-docs_18.20.8-12_arm64.deb
sha:fd7e5520e8c216e948e86a29cf644a9e6c69027b
-
alt-nodejs18-nodejs_18.20.8-12_arm64.deb
sha:c59b2f272f17ace1dd6c83c954b9da464327f618
-
alt-nodejs18-nodejs-devel_18.20.8-12_arm64.deb
sha:f146d29295db96d1638cf6c14502048fcd4b83dc
-
alt-nodejs18-npm_10.8.2-18.20.8.12_arm64.deb
sha:5443dfedffaffc8ffefa57e998549d59cfa30938
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
