ELEA-2024-9453
- ULN >
- Oracle Linux Errata repository >
- ELEA-2024-9453
ELEA-2024-9453 - nodejs:20 bug fix and enhancement update
| Type: | ENHANCEMENT |
| Impact: | NA |
| Release Date: | 2024-11-18 |
Description
nodejs
[1:20.17.0-1]
- Update to 20.17.0
Resolves: RHEL-58721
[1:20.16.0-1]
- Update to 20.16.0
Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020
[1:20.14.0-1]
- Update to version 20.14.0
[1:20.12.2-2]
- Backport nghttp2 patch for CVE-2024-28182
[1:20.12.2-1]
- Rebase to version 20.12.0
Fixes CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 (node)
Fixes CVE-2024-25629 (c-ares)
[1:20.11.1-1]
- Rebase to version 20.11.1
- Fixes: CVE-2024-21892 CVE-2024-21896 CVE-2024-22017 CVE-2024-22019 (high)
- Fixes: CVE-2023-46809 CVE-2024-21890 CVE-2024-21891 (medium)
[1:20.11.0-1]
- Rebase to version 20.11.0
Resolves: RHEL-21188
[1:20.9.0-1]
- Rebase to LTS
- Resolves: RHEL-16161
[1:20.8.1-1]
- Update node and nghttp
- Add fips patch
- Fixes CVE-2023-44487 (nghttp)
- Fixes CVE-2023-45143, CVE-2023-39331, CVE-2023-39332, CVE-2023-38552, CVE-2023-39333
[1:20.5.1-1]
- Rebase to new security release
- Address CVE-2023-32002, CVE-2023-32004, CVE-2023-32558 (high)
- Address CVE-2023-32006, CVE-2023-32559 (medium)
- Address CVE-2023-32005, CVE-2023-32003 (low)
- Resolves: #2186717
- Resolves RHELPLAN-155639
[1:20.5.0-1]
- Update to v20.5.0
- Remove dtrace support
- bcond corepack, so we don't provide it by default
- Decrease debuginfo verbosity for all arches
- Resolves: #2186717
- Resolves RHELPLAN-155639
[1:18.16.1-1]
- Rebase to 18.16.1
Resolves: rhbz#2188292 rhbz#2187683
Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590
- Replace /usr/etc/npmrc symlink with builtin configuration
Resolves: rhbz#2222285
[1:18.14.2-3]
- Update bundled c-ares to 1.19.1
Resolves: CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2023-32067
[1:18.14.2-2]
- Provide simduft
- Resolves: #2159389
[1:18.14.2-1]
- Rebase to 18.14.2
- Resolves: #2159389
- Resolves: CVE-2022-25881, CVE-2022-4904, CVE-2023-23936, CVE-2023-24807
- Resolves: CVE-2023-23918, CVE-2023-23919, CVE-2023-23920
[1:18.12.1-1]
- Rebase + CVEs
- Resolves: #2142809
- Resolves: #2142830, #2142856
[1:18.10.0-3]
- Resolves: #2111861
- Add proper sources for undici
[1:18.10.0-2]
- Resolves: #2130565
- Add missing file
[1:18.10.0-1]
- Update to latest release
- Resolves: #2130565
- Resolves #2111009, #2111861, #2132732
nodejs-nodemon
nodejs-packaging
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | nodejs-20.17.0-1.module+el9.5.0+90443+13059b6a.src.rpm | 4003b3f63cebcd486410efefe4aeb7ad152ffaee4a14441c4d8eaf5b456f2e15 | - | ol9_aarch64_appstream |
| nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm | 624fb93a1092474a8d4a2d3fe6b7f4edd4c12affe479e931268616b3fe2f381c | - | ol9_aarch64_appstream | |
| nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm | 745641bc36c893539705f623e95679d4e434457755dc343828ecd12d210428db | - | ol9_aarch64_appstream | |
| nodejs-20.17.0-1.module+el9.5.0+90443+13059b6a.aarch64.rpm | cad0a26f1cf5a6c0707cd8bde027f6797f4508561ad517ca45b914e714d16687 | - | ol9_aarch64_appstream | |
| nodejs-devel-20.17.0-1.module+el9.5.0+90443+13059b6a.aarch64.rpm | af030ad2cef8c88041f50f2598f169908ef7551e594831d9691b7dddc76e259d | - | ol9_aarch64_appstream | |
| nodejs-docs-20.17.0-1.module+el9.5.0+90443+13059b6a.noarch.rpm | ac5c75548fd54148d2a4dd48cc12ff6aa72bed692244e55d47e6312be3e99728 | - | ol9_aarch64_appstream | |
| nodejs-full-i18n-20.17.0-1.module+el9.5.0+90443+13059b6a.aarch64.rpm | fe04bd2069e42e8e9e12ea1babd96f43746ca90bd20b9910adca5d2630ca9ae7 | - | ol9_aarch64_appstream | |
| nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 44d9cbdcce4e59c215a13ca3515d49eb504a1fbfd0ccdbe23124958a9c16ac03 | - | ol9_aarch64_appstream | |
| nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 7e18e85f4cc6b3efca10bb56f962fe425daf962eda85ac1a4bd636ca4343250c | - | ol9_aarch64_appstream | |
| nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 070f0c296e686c54e6b4382ecfb201b9aae85c84f755a5062b70f921f6006c24 | - | ol9_aarch64_appstream | |
| npm-10.8.2-1.20.17.0.1.module+el9.5.0+90443+13059b6a.aarch64.rpm | 66927bd0537439451132ecac6a3e1ab62f75cd52a4c488de095b5ceea2051fb6 | - | ol9_aarch64_appstream | |
| Oracle Linux 9 (x86_64) | nodejs-20.17.0-1.module+el9.5.0+90443+13059b6a.src.rpm | 4003b3f63cebcd486410efefe4aeb7ad152ffaee4a14441c4d8eaf5b456f2e15 | - | ol9_x86_64_appstream |
| nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm | 624fb93a1092474a8d4a2d3fe6b7f4edd4c12affe479e931268616b3fe2f381c | - | ol9_x86_64_appstream | |
| nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm | 745641bc36c893539705f623e95679d4e434457755dc343828ecd12d210428db | - | ol9_x86_64_appstream | |
| nodejs-20.17.0-1.module+el9.5.0+90443+13059b6a.x86_64.rpm | 50d81634481db79c3ed14f84418e1913ac6189af22ba7d16bd3c7b9ef9e4fd66 | - | ol9_x86_64_appstream | |
| nodejs-devel-20.17.0-1.module+el9.5.0+90443+13059b6a.x86_64.rpm | 1698a10ab630a6e9d818219e4fc3f5dc804ef6333d28c934a45ac19e91deceae | - | ol9_x86_64_appstream | |
| nodejs-docs-20.17.0-1.module+el9.5.0+90443+13059b6a.noarch.rpm | ac5c75548fd54148d2a4dd48cc12ff6aa72bed692244e55d47e6312be3e99728 | - | ol9_x86_64_appstream | |
| nodejs-full-i18n-20.17.0-1.module+el9.5.0+90443+13059b6a.x86_64.rpm | b064530e48b4e9d88927759b326bdde93e23cad211e00500bbb5a827c08d7716 | - | ol9_x86_64_appstream | |
| nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 44d9cbdcce4e59c215a13ca3515d49eb504a1fbfd0ccdbe23124958a9c16ac03 | - | ol9_x86_64_appstream | |
| nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 7e18e85f4cc6b3efca10bb56f962fe425daf962eda85ac1a4bd636ca4343250c | - | ol9_x86_64_appstream | |
| nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm | 070f0c296e686c54e6b4382ecfb201b9aae85c84f755a5062b70f921f6006c24 | - | ol9_x86_64_appstream | |
| npm-10.8.2-1.20.17.0.1.module+el9.5.0+90443+13059b6a.x86_64.rpm | 2e2bf9e62bb0fd133cc8099db02db634623ccf2ac1ce81014110beecee29d681 | - | ol9_x86_64_appstream | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
