CLSA-2026:1770903861

[CLSA-2026:1770903861] alt-nodejs14-nodejs: Fix of 2 CVEs

Type:

security

Severity:

Important

Release date:

2026-02-12 13:44:25 UTC

Description:

- CVE-2025-59466: rethrow stack overflow exceptions in async_hooks instead of
  calling FatalException
- CVE-2026-21637: route pskCallback exceptions through error handlers to prevent
  remote attackers from crashing TLS servers

Updated packages:

alt-nodejs14-nodejs-14.21.3-19.el7.x86_64.rpm
sha:86dee6a81d80bdb1ce2ae1358b63a02b835479bfc352e74c1d6c6cd1f9b59e00
alt-nodejs14-nodejs-devel-14.21.3-19.el7.x86_64.rpm
sha:1bb59c55dbafed58c6f14f3a808ff150a4c8c3d96f689ef0d067f338e64ec7a2
alt-nodejs14-nodejs-docs-14.21.3-19.el7.noarch.rpm
sha:a1d8c32352fd957940eef19d15b21bb614380d92085e5efdb5a4c50f883eeeeb
alt-nodejs14-npm-6.14.18-14.21.3.19.el7.x86_64.rpm
sha:5ccc71b078407cebf4f4bebc8a07ba922d53e1c398a69e8b7b7548e5309fe449

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.