Release date:
2026-05-27 14:26:43 UTC
Description:
- CVE-2026-21717: v8: scramble the 24-bit array-index value stored in a
Name's hash_field via a 3-round xorshift-multiply with compile-time
constants so consecutive numeric strings no longer collide in V8's
internal string table (HashDoS via JSON.parse)
Updated packages:
-
alt-nodejs14-nodejs-14.21.3-22.el9.x86_64.rpm
sha:b057533c8578dfd28782c8c1e98980de5f416ea48f3d9f1b7795075f7533dd18
-
alt-nodejs14-nodejs-devel-14.21.3-22.el9.x86_64.rpm
sha:e5fca58351e3490c17bff7a9377bf24f2372b86a060b53c7202470604f070921
-
alt-nodejs14-nodejs-docs-14.21.3-22.el9.noarch.rpm
sha:e569c77e92bbe7058260bfd312e6e88c1767209e1b748540f614a7b6fff51d69
-
alt-nodejs14-npm-6.14.18-14.21.3.22.el9.x86_64.rpm
sha:1911a1585a7f6c5ebe7c71342cdbf9df9d6cdf80f7e8b026326dc0897606f673
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
