Описание
Moderate: nodejs:20 security update
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
-
nodejs: Bypass network import restriction via data URL (CVE-2024-22020)
-
nodejs: fs.lstat bypasses permission model (CVE-2024-22018)
-
nodejs: fs.fchown/fchmod bypasses permission model (CVE-2024-36137)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 9
Связанные CVE
Исправления
- Red Hat - 2296417
- Red Hat - 2296990
- Red Hat - 2299281
