[El-errata] ELSA-2025-8467 Important: Oracle Linux 9 nodejs:22 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Jun 5 12:40:51 UTC 2025
Oracle Linux Security Advisory ELSA-2025-8467
http://linux.oracle.com/errata/ELSA-2025-8467.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
nodejs-22.16.0-1.module+el9.6.0+90604+9071ea19.x86_64.rpm
nodejs-devel-22.16.0-1.module+el9.6.0+90604+9071ea19.x86_64.rpm
nodejs-docs-22.16.0-1.module+el9.6.0+90604+9071ea19.noarch.rpm
nodejs-full-i18n-22.16.0-1.module+el9.6.0+90604+9071ea19.x86_64.rpm
nodejs-libs-22.16.0-1.module+el9.6.0+90604+9071ea19.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.6.0+90588+1a9ecb62.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.6.0+90588+1a9ecb62.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.6.0+90588+1a9ecb62.noarch.rpm
npm-10.9.2-1.22.16.0.1.module+el9.6.0+90604+9071ea19.x86_64.rpm
v8-12.4-devel-12.4.254.21-1.22.16.0.1.module+el9.6.0+90604+9071ea19.x86_64.rpm
aarch64:
nodejs-22.16.0-1.module+el9.6.0+90604+9071ea19.aarch64.rpm
nodejs-devel-22.16.0-1.module+el9.6.0+90604+9071ea19.aarch64.rpm
nodejs-docs-22.16.0-1.module+el9.6.0+90604+9071ea19.noarch.rpm
nodejs-full-i18n-22.16.0-1.module+el9.6.0+90604+9071ea19.aarch64.rpm
nodejs-libs-22.16.0-1.module+el9.6.0+90604+9071ea19.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.6.0+90588+1a9ecb62.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.6.0+90588+1a9ecb62.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.6.0+90588+1a9ecb62.noarch.rpm
npm-10.9.2-1.22.16.0.1.module+el9.6.0+90604+9071ea19.aarch64.rpm
v8-12.4-devel-12.4.254.21-1.22.16.0.1.module+el9.6.0+90604+9071ea19.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-22.16.0-1.module+el9.6.0+90604+9071ea19.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.6.0+90588+1a9ecb62.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.6.0+90588+1a9ecb62.src.rpm
Related CVEs:
CVE-2025-23166
Description of changes:
nodejs
[1:22.16.0-1]
- Update to 22.16.0
Resolves: RHEL-89600 RHEL-92872 RHEL-92420
[1:22.15.0-1]
- Update to 22.15.0
- Drop upstream patches
Resolves: RHEL-87319 RHEL-86586
[1:22.13.1-4]
- Patch fix for sqlite CVE-2025-31498
Resolves: RHEL-87319
[1:22.13.1-3]
- Update c-ares to newest version with fix for CVE-2025-31498
Resolves: RHEL-86586
[1:22.13.1-2]
- Remove obsolete lua pretransaction script from spec file
Resolves: RHEL-81119
- Disable npm update notifications for users
Resolves: RHEL-81158
[1:22.13.1-1]
- Update to version 22.13.1
Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150
Resolves: RHEL-76354
[1:22.11.0-1]
- Update to version 22.11.0
[22.4.1-4]
- Initial import of nodeJS 22
nodejs-nodemon
nodejs-packaging
More information about the El-errata
mailing list