Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:8493

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Important

Описание

Important: nodejs22 security update

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed devices.

Security Fix(es):

  • nodejs: Remote Crash via SignTraits::DeriveBits() in Node.js (CVE-2025-23166)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
nodejsx86_641.el10_0nodejs-22.16.0-1.el10_0.x86_64.rpm
nodejs-develx86_641.el10_0nodejs-devel-22.16.0-1.el10_0.x86_64.rpm
nodejs-docsnoarch1.el10_0nodejs-docs-22.16.0-1.el10_0.noarch.rpm
nodejs-full-i18nx86_641.el10_0nodejs-full-i18n-22.16.0-1.el10_0.x86_64.rpm
nodejs-libsx86_641.el10_0nodejs-libs-22.16.0-1.el10_0.x86_64.rpm
nodejs-npmx86_641.22.16.0.1.el10_0nodejs-npm-10.9.2-1.22.16.0.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-23165
CVE-2025-23166

Ссылки на источники

Исправления

Связанные уязвимости

suse-cvrf логотип

SUSE-SU-2025:01879-1

suse-cvrf
5 месяцев назад

Security update for nodejs22

suse-cvrf логотип

SUSE-SU-2025:01878-1

suse-cvrf
5 месяцев назад

Security update for nodejs22

oracle-oval логотип

ELSA-2025-8493

oracle-oval
4 месяца назад

ELSA-2025-8493: nodejs22 security update (IMPORTANT)

suse-cvrf логотип

SUSE-SU-2025:02045-1

suse-cvrf
5 месяцев назад

Security update for nodejs20

suse-cvrf логотип

SUSE-SU-2025:02039-1

suse-cvrf
5 месяцев назад

Security update for nodejs20