CLSA-2026:1779703928

[CLSA-2026:1779703928] alt-nodejs20-nodejs: Fix of CVE-2026-21712

Type:

security

Severity:

Moderate

Release date:

2026-05-25 10:12:13 UTC

Description:

- CVE-2026-21712: return original href when ada::parse fails in
  url.format() instead of crashing on malformed IDN hostnames

Updated packages:

alt-nodejs20-nodejs-20.20.2-2.el9.x86_64.rpm
sha:47f13cbcdd8c172ace19789ed7a7ba65c703ee5835d163a33eb2cf7a187185e3
alt-nodejs20-nodejs-devel-20.20.2-2.el9.x86_64.rpm
sha:2ea07b49ff4c3eebe2f5f68f37811abaa56db544475f63bdc327af003a3401b7
alt-nodejs20-nodejs-docs-20.20.2-2.el9.noarch.rpm
sha:b7d1bafd18176dc49ad145c8b1d7d32a91325744460a9ddff799c6e8b9cd4815
alt-nodejs20-npm-10.8.2-20.20.2.2.el9.x86_64.rpm
sha:c46cd74840f1ea4ee438519d4ba79deba018c68be84db1dd270f8b20b25250ad

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.