[El-errata] ELSA-2024-1687 Important: Oracle Linux 8 nodejs:20 security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Apr 9 09:08:51 UTC 2024


Oracle Linux Security Advisory ELSA-2024-1687

http://linux.oracle.com/errata/ELSA-2024-1687.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-20.11.1-1.module+el8.9.0+90250+089ba5e1.x86_64.rpm
nodejs-devel-20.11.1-1.module+el8.9.0+90250+089ba5e1.x86_64.rpm
nodejs-docs-20.11.1-1.module+el8.9.0+90250+089ba5e1.noarch.rpm
nodejs-full-i18n-20.11.1-1.module+el8.9.0+90250+089ba5e1.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm
npm-10.2.4-1.20.11.1.1.module+el8.9.0+90250+089ba5e1.x86_64.rpm

aarch64:
nodejs-20.11.1-1.module+el8.9.0+90250+089ba5e1.aarch64.rpm
nodejs-devel-20.11.1-1.module+el8.9.0+90250+089ba5e1.aarch64.rpm
nodejs-docs-20.11.1-1.module+el8.9.0+90250+089ba5e1.noarch.rpm
nodejs-full-i18n-20.11.1-1.module+el8.9.0+90250+089ba5e1.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90082+b6a613a6.noarch.rpm
npm-10.2.4-1.20.11.1.1.module+el8.9.0+90250+089ba5e1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-20.11.1-1.module+el8.9.0+90250+089ba5e1.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.9.0+90082+b6a613a6.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.9.0+90082+b6a613a6.src.rpm

Related CVEs:

CVE-2023-46809
CVE-2024-21890
CVE-2024-21891
CVE-2024-21892
CVE-2024-21896
CVE-2024-22017
CVE-2024-22019




Description of changes:

nodejs
[1:20.11.1-1]
- Rebase to version 20.11.1
- Fixes: CVE-2024-21892 CVE-2024-21896 CVE-2024-22017 CVE-2024-22019 (high)
- Fixes: CVE-2023-46809 CVE-2024-21890 CVE-2024-21891 (medium)

nodejs-nodemon
nodejs-packaging




More information about the El-errata mailing list