ELSA-2023-5849

ULN >
Oracle Linux Errata repository >
ELSA-2023-5849

ELSA-2023-5849 - 18 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2023-10-20

Description

nodejs
[1:18.18.2-2]
- Rebase to version 18.18.2
Resolves: CVE-2023-44487 CVE-2023-45143 CVE-2023-38552 CVE-2023-39333

nodejs-nodemon
[3.0.1-1]
- Rebase to 3.0.1
- Resolves: CVE-2022-25883

nodejs-packaging
[2021.06-4]
- NPM bundler: also find namespaced bundled dependencies

[2021.06-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild

[2021.06-2]
- Fix hard-coded output directory in the bundler

[2021.06-1]
- Update to 2021.06-1
- bundler: Handle archaic license metadata
- bundler: Warn about bundled dependencies with no license metadata

[2021.01-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[2021.01-2]
- nodejs-packaging-bundler improvements to handle uncommon characters

[2021.01]
- Add nodejs-packaging-bundler and update README.md

[2020.09-1]
- Move to dist-git as the upstream

[25-1]
- Fix incorrect bundled library detection for Requires

[24-1]
- Check node_modules_prod for bundled dependencies

[23-4]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[23-3]
- Drop Requires: nodejs(engine)

[23-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	nodejs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.src.rpm	926b9f5a46bee08f11624eb8666a04b8	-	ol9_aarch64_appstream
	nodejs-nodemon-3.0.1-1.module+el9.2.0+21169+1d24b6cc.src.rpm	d31a14e71e09d1d194b2127391063532	-	ol9_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.src.rpm	c51f57451e7bb6cdc93c20d57d9c305f	-	ol9_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.src.rpm	c51f57451e7bb6cdc93c20d57d9c305f	-	ol9_aarch64_appstream_developer
	nodejs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.aarch64.rpm	d9a1bface782be453c5817cffc4dde83	-	ol9_aarch64_appstream
	nodejs-devel-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.aarch64.rpm	204db3fab7a2c0df71e5ea1eb6abc232	-	ol9_aarch64_appstream
	nodejs-docs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.noarch.rpm	c9393467fe21552bfd2a2583bc905572	-	ol9_aarch64_appstream
	nodejs-full-i18n-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.aarch64.rpm	90cc987d9267812e509aefa64acb7cf8	-	ol9_aarch64_appstream
	nodejs-nodemon-3.0.1-1.module+el9.2.0+21169+1d24b6cc.noarch.rpm	da533c4f51d845af6b2a6a95c52e8389	-	ol9_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	71707b930d982392700dd9f66de54775	-	ol9_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	71707b930d982392700dd9f66de54775	-	ol9_aarch64_appstream_developer
	nodejs-packaging-bundler-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	38a31d8d1c00c50545c4c24dbf421256	-	ol9_aarch64_appstream
	nodejs-packaging-bundler-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	38a31d8d1c00c50545c4c24dbf421256	-	ol9_aarch64_appstream_developer
	npm-9.8.1-1.18.18.2.2.module+el9.2.0+21194+c0bbf6cf.aarch64.rpm	176d22c58515eab492087241ed8a29c9	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	nodejs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.src.rpm	926b9f5a46bee08f11624eb8666a04b8	-	ol9_x86_64_appstream
	nodejs-nodemon-3.0.1-1.module+el9.2.0+21169+1d24b6cc.src.rpm	d31a14e71e09d1d194b2127391063532	-	ol9_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.src.rpm	c51f57451e7bb6cdc93c20d57d9c305f	-	ol9_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.src.rpm	c51f57451e7bb6cdc93c20d57d9c305f	-	ol9_x86_64_appstream_developer
	nodejs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.x86_64.rpm	1ca83bf246a13bb47ba97af420ee135f	-	ol9_x86_64_appstream
	nodejs-devel-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.x86_64.rpm	02cb8924852742a105ffcea77210b572	-	ol9_x86_64_appstream
	nodejs-docs-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.noarch.rpm	c9393467fe21552bfd2a2583bc905572	-	ol9_x86_64_appstream
	nodejs-full-i18n-18.18.2-2.module+el9.2.0+21194+c0bbf6cf.x86_64.rpm	64c77db49fa89a40a88335fffe95777c	-	ol9_x86_64_appstream
	nodejs-nodemon-3.0.1-1.module+el9.2.0+21169+1d24b6cc.noarch.rpm	da533c4f51d845af6b2a6a95c52e8389	-	ol9_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	71707b930d982392700dd9f66de54775	-	ol9_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	71707b930d982392700dd9f66de54775	-	ol9_x86_64_appstream_developer
	nodejs-packaging-bundler-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	38a31d8d1c00c50545c4c24dbf421256	-	ol9_x86_64_appstream
	nodejs-packaging-bundler-2021.06-4.module+el9.1.0+20762+f52d7401.noarch.rpm	38a31d8d1c00c50545c4c24dbf421256	-	ol9_x86_64_appstream_developer
	npm-9.8.1-1.18.18.2.2.module+el9.2.0+21194+c0bbf6cf.x86_64.rpm	190a5c5a984df0c4575b9f3061921eff	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691