CLSA-2025:1764606175

[CLSA-2025:1764606175] alt-nodejs14-nodejs: Fix of CVE-2023-38552

Type:

security

Severity:

Important

Release date:

2025-12-01 16:22:59 UTC

Description:

- CVE-2023-38552: use tamper-proof integrity check function to prevent tampering
  with Hash class internals in policy mechanism

Updated packages:

alt-nodejs14-nodejs-14.21.3-9.el8.x86_64.rpm
sha:3b79e198ff19532e567ac40be2220bd6b8f328720808dfa5a989238c3cebaf92
alt-nodejs14-nodejs-devel-14.21.3-9.el8.x86_64.rpm
sha:2e1eed2372b7f38a7b1cd9fd30d2380c5cf81a054d3f979da0a609e4b09aa154
alt-nodejs14-nodejs-docs-14.21.3-9.el8.noarch.rpm
sha:6da9116aa3144c5a4d21c92b0e5091ab0ea42f74c080305275b9a5afbc41e068
alt-nodejs14-npm-6.14.18-14.21.3.9.el8.x86_64.rpm
sha:391bdd95ce5a4e8dbddfae81fb029bdf2dda6593d9f614c7e8bf047a7c94c342

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.