[CLSA-2026:1770717358] nodejs: Fix of CVE-2024-28863
Type:
security
Severity:
Moderate
Release date:
2026-02-10 09:56:03 UTC
Description:
- CVE-2024-28863: prevent extraction in excessively deep sub-folders to fix potential memory consumption and crashing issues.
Updated packages:
  • nodejs-16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:af434eb10dee6948809189e6ec5432bcbaf6d62e19b0c9c1d32433437c124737
  • nodejs-devel-16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:e8fd92d286549c81507ace75b89e25eb16e635ba4469a45110fdef1b67e77bca
  • nodejs-docs-16.20.2-8.el9_6.tuxcare.els5.noarch.rpm
    sha:c01816fddf2f8fa372e97d06485c2337dffc7a4f0a383775592ebfe470d6e368
  • nodejs-full-i18n-16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:e1fc0958de2dfbbea4988eb32f16ecc1f6af0bda350c702fa60860d242544ef6
  • nodejs-libs-16.20.2-8.el9_6.tuxcare.els5.i686.rpm
    sha:9ed99c7a18804d26a10f51c140904c680e371bc728cd7e64b0f6b2eeb503c1af
  • nodejs-libs-16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:859499fa85aa267f15af7430de33081e9464a2cfade5a90cfbda36ae3fb211a7
  • npm-8.19.4_1.16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:2db896a03eb86e39728e121c2ce609caff6d8e9c45df9d9f10e2f9e705fcb977
  • v8-devel-9.4.146.26_1.16.20.2-8.el9_6.tuxcare.els5.x86_64.rpm
    sha:280a2efb284d8d174d8978dc79ae310e7f027e7b8f448b370302a8ecd3484109
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.