Release date:
2026-05-07 16:25:11 UTC
Description:
- CVE-2026-21710: use null prototype for headersDistinct/trailersDistinct to
prevent uncaught TypeError when a __proto__ header is received and the
application accesses req.headersDistinct or req.trailersDistinct
Updated packages:
-
alt-nodejs16-nodejs-16.20.2-18.el8.x86_64.rpm
sha:153c70b84120e117c4947441a58e571be34c7418b9c72bfbd73e1e7a559752f5
-
alt-nodejs16-nodejs-devel-16.20.2-18.el8.x86_64.rpm
sha:3b3c75f3e7a27aa3aaee445b082f6086f50ce756977d2a99c08807add347dadd
-
alt-nodejs16-nodejs-docs-16.20.2-18.el8.noarch.rpm
sha:69f87dcf097a7747be1742ac4be3a5082bcf5edd41804a4716b3110d2fd94a4e
-
alt-nodejs16-npm-8.19.4-16.20.2.18.el8.x86_64.rpm
sha:fe6b553634337de1e714f00d6bb7ff7b27734eb3041607ad3e8a096b4cdd89f2
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
