ELSA-2024-1438

ELSA-2024-1438 - nodejs security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-03-21

Description

[1:16.20.2-4.0.1]
- reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks
Resolves: CVE-2024-22019

Related CVEs

CVE-2024-22019

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	nodejs-16.20.2-4.0.1.el9_3.src.rpm	bdcc79bc2e897a5d1b5d63ff6d2d5d1a	-	ol9_aarch64_appstream
	nodejs-16.20.2-4.0.1.el9_3.aarch64.rpm	251455e88730ee956b8408825b557308	-	ol9_aarch64_appstream
	nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm	c6658d02e78dea1638c92e12e6f21755	-	ol9_aarch64_appstream
	nodejs-full-i18n-16.20.2-4.0.1.el9_3.aarch64.rpm	45916067189cb7682ee1b4999f850a32	-	ol9_aarch64_appstream
	nodejs-libs-16.20.2-4.0.1.el9_3.aarch64.rpm	eb33a417d17ee180ed5112d666efbfb8	-	ol9_aarch64_appstream
	npm-8.19.4-1.16.20.2.4.0.1.el9_3.aarch64.rpm	5e7459d7a87f90fea34a4506265f9ca5	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	nodejs-16.20.2-4.0.1.el9_3.src.rpm	bdcc79bc2e897a5d1b5d63ff6d2d5d1a	-	ol9_x86_64_appstream
	nodejs-16.20.2-4.0.1.el9_3.x86_64.rpm	5fe29ce597ed2645a1b8a71bbfb4205a	-	ol9_x86_64_appstream
	nodejs-docs-16.20.2-4.0.1.el9_3.noarch.rpm	c6658d02e78dea1638c92e12e6f21755	-	ol9_x86_64_appstream
	nodejs-full-i18n-16.20.2-4.0.1.el9_3.x86_64.rpm	dca84b1537075a30d6e34f92555963e1	-	ol9_x86_64_appstream
	nodejs-libs-16.20.2-4.0.1.el9_3.i686.rpm	e4ff3b653442cedff152871ec75ea33c	-	ol9_x86_64_appstream
	nodejs-libs-16.20.2-4.0.1.el9_3.x86_64.rpm	8f5eccb27ccbc336752be7412824d402	-	ol9_x86_64_appstream
	npm-8.19.4-1.16.20.2.4.0.1.el9_3.x86_64.rpm	63d69100c90cf7e1c962a3d53a3917a3	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team