[CLSA-2026:1770888951] alt-nodejs12-nodejs: Fix of CVE-2025-55131
Type:
security
Severity:
Important
Release date:
2026-02-12 09:35:55 UTC
Description:
- CVE-2025-55131: refactor unsafe buffer creation to remove zero-fill toggle mechanism that could expose uninitialized memory when using vm module with timeout options, preventing potential information disclosure
Updated packages:
  • alt-nodejs12-nodejs-12.22.12-16.el7.x86_64.rpm
    sha:52f2d23104fb58502c5ba98617bfe456ca4d5c67f3140f9f8b9e2bfb54187473
  • alt-nodejs12-nodejs-devel-12.22.12-16.el7.x86_64.rpm
    sha:f5b0110868aaea8b8d5a67d7a22ea6ba8ba46c350faef9bbbeb94f34dd67beb2
  • alt-nodejs12-nodejs-docs-12.22.12-16.el7.noarch.rpm
    sha:f3d80cbcdf3281dca56a9d6eed6f9b2fef9957f08c9e4df71316e545f77d419a
  • alt-nodejs12-npm-6.14.16-12.22.12.16.el7.x86_64.rpm
    sha:086896b18aa96978d1bef31179755dd28e08856e08e7b35d75aec09db4923908
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.