Release date:
2025-12-01 16:38:42 UTC
Description:
* SECURITY UPDATE: Node.js policy integrity check bypass vulnerability
- debian/patches/CVE-2023-38552.patch: use tamper-proof integrity check
function to prevent tampering with Hash class internals in policy
mechanism
- CVE-2023-38552
Updated packages:
-
alt-nodejs14-docs_14.21.3-9_amd64.deb
sha:f48e20fe73557a92e57da91bf3ace3b859d0d7fa
-
alt-nodejs14-nodejs_14.21.3-9_amd64.deb
sha:67966d9d528fb3c4c03d95b739d4cfc6b7fcbc75
-
alt-nodejs14-nodejs-devel_14.21.3-9_amd64.deb
sha:bcc5900e492e349778f47566774a587c14b780a8
-
alt-nodejs14-npm_6.14.18-14.21.3.9_amd64.deb
sha:5a6258cb33e3751bb9dbc818ccfc04986daa1d15
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
