Release date:
2025-11-05 13:04:00 UTC
Description:
- CVE-2023-32002: prevent Module.constructor._load() bypass by adding constructor
property protection
- CVE-2023-32006: prevent require.main.constructor and require.extensions bypass
by implementing secure module loading validation
Updated packages:
-
alt-nodejs14-nodejs-14.21.3-1.1.el8.tuxcare.els5.x86_64.rpm
sha:92b9e3377a4ec88ed1f0c907411e024a1cb54c41769df152cdef11eda521da36
-
alt-nodejs14-nodejs-devel-14.21.3-1.1.el8.tuxcare.els5.x86_64.rpm
sha:27ea9b2dae8f87bf4b85fbcda746df6f11887c519c0883b343fdf83768cc8f1a
-
alt-nodejs14-nodejs-docs-14.21.3-1.1.el8.tuxcare.els5.noarch.rpm
sha:94e7538d1f7caba5f02130d679f47959ebe0ba5d0fcbde3ca1b768b82593ebfa
-
alt-nodejs14-npm-6.14.18-14.21.3.1.el8.x86_64.rpm
sha:ade7850b5bae8c136d7e4128c27bf9c554c13a329e352af4c86f7afe161f9a7b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
