Release date:
2025-12-16 17:44:46 UTC
Description:
* SECURITY UPDATE: Node.js zlib denial of service vulnerability
- debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer
is full to prevent resource exhaustion during decompression
- CVE-2024-22025
Updated packages:
-
alt-nodejs14-docs_14.21.3-14_amd64.deb
sha:ac66b149d04e8e49b069e80522316675d9ca46c1
-
alt-nodejs14-nodejs_14.21.3-14_amd64.deb
sha:ff2c743afe2416b2b24f5e2627c2a88480400576
-
alt-nodejs14-nodejs-devel_14.21.3-14_amd64.deb
sha:3b58eddf88d8dece7634da18419923c3c5c27c1c
-
alt-nodejs14-npm_6.14.18-14.21.3.14_amd64.deb
sha:b55d08cc8ce90b874f306aa6f6c34560da3cf1c3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
