Описание
ELSA-2022-6595: nodejs and nodejs-nodemon security and bug fix update (MODERATE)
nodejs [16.16.0-1]
- Rebase to version 16.16.0 Resolves: RHBZ#2106290 Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215
[16.14.0-5]
- Decouple dependency bundling from bootstrapping
nodejs-nodemon
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
nodejs
16.16.0-1.el9_0
nodejs-docs
16.16.0-1.el9_0
nodejs-full-i18n
16.16.0-1.el9_0
nodejs-libs
16.16.0-1.el9_0
nodejs-nodemon
2.0.19-1.el9_0
npm
8.11.0-1.16.16.0.1.el9_0
Oracle Linux x86_64
nodejs
16.16.0-1.el9_0
nodejs-docs
16.16.0-1.el9_0
nodejs-full-i18n
16.16.0-1.el9_0
nodejs-libs
16.16.0-1.el9_0
nodejs-nodemon
2.0.19-1.el9_0
npm
8.11.0-1.16.16.0.1.el9_0
Ссылки на источники
Связанные уязвимости
This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.
This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.
This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.
This affects the package ini before 1.3.6. If an attacker submits a ma ...
