Release date:
2026-05-07 15:27:58 UTC
Description:
- CVE-2026-21710: use null prototype for headersDistinct/trailersDistinct to
prevent uncaught TypeError when a __proto__ header is received and the
application accesses req.headersDistinct or req.trailersDistinct
Updated packages:
-
alt-nodejs18-nodejs-18.20.8-9.el9.x86_64.rpm
sha:b3344f916ed931c4198151232b501a4b3463e867d6e10fac072c283b59b9044d
-
alt-nodejs18-nodejs-devel-18.20.8-9.el9.x86_64.rpm
sha:0e16a6d8b34335d207e3a4c920e9abbf8cfa081c5adae47f173f583626b2bc9a
-
alt-nodejs18-nodejs-docs-18.20.8-9.el9.noarch.rpm
sha:901ae00911566070466950ad8eb852ce052116e8bd89ca20163f8be7ad17c527
-
alt-nodejs18-npm-10.8.2-18.20.8.9.el9.x86_64.rpm
sha:2bde7be677b9f862a67f0d538d2920fc7d3b6808d05bb6548a943e58fee826ac
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
