Release date:
2025-12-05 18:15:24 UTC
Description:
- CVE-2023-46809: fixes a timing‑side‑channel flaw in the RSA PKCS#1 v1.5
decryption logic, preventing a Marvin‑style padding‑oracle attack that
could allow recovery of sensitive data.
Updated packages:
-
alt-nodejs14-nodejs-14.21.3-11.el8.x86_64.rpm
sha:03a80bd46097902fdcd4e25b84d2e91386f7795138824afa4206291ef6b9888b
-
alt-nodejs14-nodejs-devel-14.21.3-11.el8.x86_64.rpm
sha:9396901480b1ef1ca9d9f8fb97d54c90fdf3681ca711cc72651ca5a798fe8651
-
alt-nodejs14-nodejs-docs-14.21.3-11.el8.noarch.rpm
sha:34e4fdc9f5eb33ce44d3c9273e969fccea9c73ada4964550cfbdca6b75fe6fe8
-
alt-nodejs14-npm-6.14.18-14.21.3.11.el8.x86_64.rpm
sha:f71f940b5b5df5d2c65d9fadb1249786356eba1d9a30222cf0e1fb7778bd1558
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
