ELSA-2021-5171

ULN >
Oracle Linux Errata repository >
ELSA-2021-5171

ELSA-2021-5171 - nodejs:16 security, bug fix, and enhancement update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2021-12-16

Description

nodejs
[16.13.1-3.0.1]
- Libraries must not be group-writeable. Change node-gyp permission to 0755 [Orabug: 28451433]

[1:16.13.1-3]
- Resolves: RHBZ#2027610
- Add corepack to spec

[1:16.13.1-2]
- Resolves: RHBZ#2027610
- Update npm version test

[1:16.13.1-1]
- Resolves: RHBZ#2027644, RHBZ#2027643, RHBZ#2027638, RHBZ#2027633
- Resolves: RHBZ#2027610
- Rebase to LTS release and to fix multiple low and medium CVEs

nodejs-nodemon
[2.0.15-1]
- Resolves: RHBZ#2027630
- Resolves CVE-2020-28469
- Rebase to newest version
- Change source to npmjs.com

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.src.rpm	3fd3799ac30c5d78d4002937e844b4e2	-
	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.src.rpm	55c63e1c2b559cd937a33c115ace1f92	-
	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.src.rpm	33ab15cdeba9dfd4741ae7ee0704ec56	-
	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm	3f600e1cadb511eaf978c5a359cb0972	-
	nodejs-devel-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm	7e4721f09aff6ce2041296d74c1453e1	-
	nodejs-docs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.noarch.rpm	15347ee1391a3f44ada3b63987474aaa	-
	nodejs-full-i18n-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm	4971022c781bf140ee2b0a7bdc08bf0b	-
	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.noarch.rpm	d1c8a1ecb36eef734a49b36cc967c75c	-
	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm	ec1d114929ce0518b78be0064d645d66	-
	npm-8.1.2-1.16.13.1.3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm	4999ccafe4d9bc61fff524938b15d787	-

Oracle Linux 8 (x86_64)	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.src.rpm	3fd3799ac30c5d78d4002937e844b4e2	-
	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.src.rpm	55c63e1c2b559cd937a33c115ace1f92	-
	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.src.rpm	33ab15cdeba9dfd4741ae7ee0704ec56	-
	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.x86_64.rpm	883b76e147bb2ddb95f7df0a08bd1419	-
	nodejs-devel-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.x86_64.rpm	5a45e6eb4576092866b7de6b97c20cbd	-
	nodejs-docs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.noarch.rpm	15347ee1391a3f44ada3b63987474aaa	-
	nodejs-full-i18n-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.x86_64.rpm	f549bddadb8269c664a2e647dba951ba	-
	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.noarch.rpm	d1c8a1ecb36eef734a49b36cc967c75c	-
	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm	ec1d114929ce0518b78be0064d645d66	-
	npm-8.1.2-1.16.13.1.3.0.1.module+el8.5.0+20457+52828f44.x86_64.rpm	b4f369e65068256ab6062c9ff925e954	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691