[CLSA-2025:1765974575] Fix CVE(s): CVE-2024-22025

Type:

security

Severity:

Moderate

Release date:

2025-12-17 12:29:39 UTC

Description:

   * SECURITY UPDATE: Node.js zlib denial of service vulnerability
     - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
       is full to prevent resource exhaustion during decompression
     - CVE-2024-22025

Updated packages:

alt-nodejs12-docs_12.22.12-14_amd64.deb
sha:27939dcec89f6bc61afef85c5235940cc843d2ec
alt-nodejs12-nodejs_12.22.12-14_amd64.deb
sha:997a7d3dc97dc57ff6821625bb6830b9d5c19cb0
alt-nodejs12-nodejs-devel_12.22.12-14_amd64.deb
sha:7739d633f30b0f596398d6045300f42b43ef14d0
alt-nodejs12-npm_6.14.16-12.22.12.14_amd64.deb
sha:ad69308a795be89c290e0fbbb67d1cb9c1df8c06

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.