Release date:
2026-05-25 12:46:35 UTC
Description:
- CVE-2026-21714: propagate NGHTTP2_ERR_FLOW_CONTROL in OnInvalidFrame
so Http2Session is destroyed after connection-level WINDOW_UPDATE overflow
instead of leaking memory
Updated packages:
-
alt-nodejs18-nodejs-18.20.8-12.el8.x86_64.rpm
sha:945942c36b50d39a99f3bca737d13653ca2d354b16ea09ceedd0170c32e90bc7
-
alt-nodejs18-nodejs-devel-18.20.8-12.el8.x86_64.rpm
sha:798f1126a75a399efa16e6785dc6014cb5e85c34c39050d47856ac2cd3317243
-
alt-nodejs18-nodejs-docs-18.20.8-12.el8.noarch.rpm
sha:05254bfc57b47a8f7778dc543aa0d703c52757eedad8b812042e11142ef03c10
-
alt-nodejs18-npm-10.8.2-18.20.8.12.el8.x86_64.rpm
sha:1fe32e819f64736d2a6556331ba7fb0b1165e1d9bc420ef386b8f0ac1e9685a6
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
