Release date:
2026-05-29 13:35:06 UTC
Description:
- CVE-2026-21717: v8: scramble the 24-bit array-index value stored in a
Name's hash_field via a 3-round xorshift-multiply with compile-time
constants so consecutive numeric strings no longer collide in V8's
internal string table (HashDoS via JSON.parse)
Updated packages:
-
alt-nodejs14-nodejs-14.21.3-22.el10.x86_64.rpm
sha:70d913bee907e93cbbd5a4058e7689875fd2de5804e043cbf875d2e2a0bb9445
-
alt-nodejs14-nodejs-devel-14.21.3-22.el10.x86_64.rpm
sha:f3091f9e46f66185988383cdb18851e0bb00fe6453162918bef3309e9b7c5da1
-
alt-nodejs14-nodejs-docs-14.21.3-22.el10.noarch.rpm
sha:196ccd15a87d22e7d0508e696a8a879217a9cc29f7a0ce60b6933c890fe164c8
-
alt-nodejs14-npm-6.14.18-14.21.3.22.el10.x86_64.rpm
sha:53b6fd8185ff4b784f284cc7541a913d334e853c476dcc0f5d7892d18daf5777
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
