Release date:
2025-12-04 16:23:36 UTC
Description:
- CVE-2023-46809: fixes a timing‑side‑channel flaw in the RSA PKCS#1 v1.5
decryption logic, preventing a Marvin‑style padding‑oracle attack that
could allow recovery of sensitive data.
Updated packages:
-
alt-nodejs14-nodejs-14.21.3-11.el7.x86_64.rpm
sha:981953ca7a29ea7f1e8134a429a065da833b373955b4aa5a0c94f609c7da3b7b
-
alt-nodejs14-nodejs-devel-14.21.3-11.el7.x86_64.rpm
sha:b04c9408eee332fa2c15b66e1d9549d96ce9eae5f943156ab1e7add7c227c787
-
alt-nodejs14-nodejs-docs-14.21.3-11.el7.noarch.rpm
sha:6bd62948ee8126c72cd8e321496493f8c7e59ac5aab4362df6f83f65d3bb32c4
-
alt-nodejs14-npm-6.14.18-14.21.3.11.el7.x86_64.rpm
sha:7a1b6bd97561aabdc6b0e31c1fbc4e5e0f2b4b0fa1424e55b05c09f030b4c58c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
