[El-errata] ELSA-2021-3623 Important: Oracle Linux 8 nodejs:12 security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed Sep 22 12:58:38 PDT 2021 

Oracle Linux Security Advisory ELSA-2021-3623

http://linux.oracle.com/errata/ELSA-2021-3623.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-12.22.5-1.module+el8.4.0+20308+065a70e3.x86_64.rpm
nodejs-devel-12.22.5-1.module+el8.4.0+20308+065a70e3.x86_64.rpm
nodejs-docs-12.22.5-1.module+el8.4.0+20308+065a70e3.noarch.rpm
nodejs-full-i18n-12.22.5-1.module+el8.4.0+20308+065a70e3.x86_64.rpm
nodejs-nodemon-2.0.3-1.module+el8.4.0+20281+eb64e322.noarch.rpm
nodejs-packaging-17-3.module+el8.1.0+5393+aaf413e3.noarch.rpm
npm-6.14.14-1.12.22.5.1.module+el8.4.0+20308+065a70e3.x86_64.rpm

aarch64:
nodejs-12.22.5-1.module+el8.4.0+20308+065a70e3.aarch64.rpm
nodejs-devel-12.22.5-1.module+el8.4.0+20308+065a70e3.aarch64.rpm
nodejs-docs-12.22.5-1.module+el8.4.0+20308+065a70e3.noarch.rpm
nodejs-full-i18n-12.22.5-1.module+el8.4.0+20308+065a70e3.aarch64.rpm
nodejs-nodemon-2.0.3-1.module+el8.4.0+20281+eb64e322.noarch.rpm
nodejs-packaging-17-3.module+el8.1.0+5393+aaf413e3.noarch.rpm
npm-6.14.14-1.12.22.5.1.module+el8.4.0+20308+065a70e3.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-12.22.5-1.module+el8.4.0+20308+065a70e3.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-nodemon-2.0.3-1.module+el8.4.0+20281+eb64e322.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-packaging-17-3.module+el8.1.0+5393+aaf413e3.src.rpm

Related CVEs:

CVE-2021-3672
CVE-2021-22930
CVE-2021-22931
CVE-2021-22939
CVE-2021-22940
CVE-2021-23343
CVE-2021-32803
CVE-2021-32804




Description of changes:

nodejs
[1:12.22.5-1]
- Resolves CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, CVE-2021-22940,
- CVE-2021-23343, CVE-2021-32803, CVE-2021-32804, CVE-2021-3672
- Resolves RHBZ#1951621 (make FIPS always available)
- Resolves: RHBZ#1988595, RHBZ#1993992, RHBZ#1993989, RHBZ#1993093
- Resolves: RHBZ#1994025, RHBZ#1994403, RHBZ#1994407, RHBZ#1994399
- Resolves: RHBZ#1993927 (make FIPS always available)

[1:12.22.3-3]
- Resolves CVE-2021-23362 CVE-2021-27290
- Resolves: RHBZ#1991584, RHBZ#1991578
- Add missing CVE trackers

More information about the El-errata mailing list