Release date:
2026-05-07 16:29:26 UTC
Description:
- CVE-2026-21710: use null prototype for headersDistinct/trailersDistinct to
prevent uncaught TypeError when a __proto__ header is received and the
application accesses req.headersDistinct or req.trailersDistinct
Updated packages:
-
alt-nodejs16-nodejs-16.20.2-18.el9.x86_64.rpm
sha:7005129693725310b2a724128348c38a70d3ae495519ac31485724bdae9c26ee
-
alt-nodejs16-nodejs-devel-16.20.2-18.el9.x86_64.rpm
sha:d567731c29372e6a8e7c557ae1965a45cfa1177d2494e350948e488426621aa3
-
alt-nodejs16-nodejs-docs-16.20.2-18.el9.noarch.rpm
sha:65d6f27f19751fcc19629dacef398224d56367ef892e5acc14a92e9e8c7a8d46
-
alt-nodejs16-npm-8.19.4-16.20.2.18.el9.x86_64.rpm
sha:fac83f6e3152f1ba67a94da3433f5a7e60f49863aab9b45568de86435437bc48
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
