ELSA-2026-7123

ULN >
Oracle Linux Errata repository >
ELSA-2026-7123

ELSA-2026-7123 - nodejs:22 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-04-09

Description

nodejs
[1:22.22.2-1]
- Update to version 22.22.2
Resolves: RHEL-154019
Fixes: CVE-2026-1528 CVE-2026-27135 CVE-2026-27904 CVE-2026-26996 CVE-2026-27135 CVE-2026-1528

nodejs-nodemon
[3.0.1-1]
- Exclude ix86 arches from building.
Related: RHEL-35991

[3.0.1-1]
- Rebase to 3.0.1
- Resolves: CVE-2022-25883

[2.0.20-2]
- Patch bundled glob-parent
- Resolves: CVE-2021-35065

[2.0.20-1]
- Rebase to 2.0.20
Resolves: CVE-2022-3517

[2.0.15-1]
- Resolves: RHBZ#2005419
- Resolves CVE-2020-28469
- Rebase to newest version
- Change source to npmjs.com

[2.0.7-1]
- Resolves: RHBZ#1953991
- Update to 2.0.7 to resolve CVE-2020-28469

[2.0.3-1]
- Updated

[1.18.3-1]
- Resolves: #1615413
- Updated
- bundled

[1.11.0-2]
- rh-nodejs8 rebuild

[1.11.0-1]
- Updated with script

nodejs-packaging
[2021.06-4]
- Exclude ix86 arches from building.
Related: RHEL-35991

[2021.06-4]
- NPM bundler: also find namespaced bundled dependencies

[2021.06-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild

[2021.06-2]
- Fix hard-coded output directory in the bundler

[2021.06-1]
- Update to 2021.06-1
- bundler: Handle archaic license metadata
- bundler: Warn about bundled dependencies with no license metadata

[2021.01-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[2021.01-2]
- nodejs-packaging-bundler improvements to handle uncommon characters

[2021.01]
- Add nodejs-packaging-bundler and update README.md

[2020.09-1]
- Move to dist-git as the upstream

[25-1]
- Fix incorrect bundled library detection for Requires

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	nodejs-22.22.2-1.module+el8.10.0+90865+d647ef3a.src.rpm	37ec99ab5f51841fac891caf76c5cd90afb23811c1574dfa79741560784dd7e5	-	ol8_aarch64_appstream
	nodejs-nodemon-3.0.1-1.module+el8.10.0+90865+d647ef3a.src.rpm	625a5a485ab4611e2ae4b178f5983b704e8087eb9b69bb19075d5fd70ccfee1a	-	ol8_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el8.10.0+90865+d647ef3a.src.rpm	234b6576c9f9d4228be7fd9195be37f41b043b0d1ed8e108160a1641385fb8aa	-	ol8_aarch64_appstream
	nodejs-22.22.2-1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	cfca393c7a5913a6c69c186e86905a472dfb762ca38d90309cf50a8cc00482a9	-	ol8_aarch64_appstream
	nodejs-devel-22.22.2-1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	38105258ca2d59d9a88721c0be67226f83330ca1e1953e8462d027307a9e7ef1	-	ol8_aarch64_appstream
	nodejs-docs-22.22.2-1.module+el8.10.0+90865+d647ef3a.noarch.rpm	d496ba0c0b84c2f0cba823fcd0c865e3bf8e65a52d13f22a875adbc6f51bc84a	-	ol8_aarch64_appstream
	nodejs-full-i18n-22.22.2-1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	9302dccf1038157f81f2980ef3aa0e5c2647735c180754908b1e18ba62574479	-	ol8_aarch64_appstream
	nodejs-libs-22.22.2-1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	c547a088f9e55c82f90e80666849bd12ff33925a175f698f3fe180d5853fb138	-	ol8_aarch64_appstream
	nodejs-nodemon-3.0.1-1.module+el8.10.0+90865+d647ef3a.noarch.rpm	773dc76476bea80b36c38fc1fecd71a2bb0e7ea775d8d6f31934431ebd9cad1c	-	ol8_aarch64_appstream
	nodejs-packaging-2021.06-4.module+el8.10.0+90865+d647ef3a.noarch.rpm	fd725cdc1a33680c47b70cc0e3200f7ee8f8edf9dd429732a716739009130627	-	ol8_aarch64_appstream
	nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90865+d647ef3a.noarch.rpm	0d0e7d733fb3daacc042bd20887ad0713dcccbeeda9cc7848012b031938ebedc	-	ol8_aarch64_appstream
	npm-10.9.7-1.22.22.2.1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	978c98493095802387f1363a7e4fc4ea4fbf7859d3fc131e80df8ff7eb95b7cf	-	ol8_aarch64_appstream
	v8-12.4-devel-12.4.254.21-1.22.22.2.1.module+el8.10.0+90865+d647ef3a.aarch64.rpm	5cac9126c3c07a651ccc8f8936d63f88cce9b807db295c8903e5a8dc5f0b1b98	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	nodejs-22.22.2-1.module+el8.10.0+90865+d647ef3a.src.rpm	37ec99ab5f51841fac891caf76c5cd90afb23811c1574dfa79741560784dd7e5	-	ol8_x86_64_appstream
	nodejs-nodemon-3.0.1-1.module+el8.10.0+90865+d647ef3a.src.rpm	625a5a485ab4611e2ae4b178f5983b704e8087eb9b69bb19075d5fd70ccfee1a	-	ol8_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el8.10.0+90865+d647ef3a.src.rpm	234b6576c9f9d4228be7fd9195be37f41b043b0d1ed8e108160a1641385fb8aa	-	ol8_x86_64_appstream
	nodejs-22.22.2-1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	24c233e53973c45c5ef7a78ee919d25679882ddd25a556666adb0cd2ee7d6622	-	ol8_x86_64_appstream
	nodejs-devel-22.22.2-1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	269779d46c451646f56308a6a60aa4b1a576a1b234fec209e1e7fb0de28d8a6e	-	ol8_x86_64_appstream
	nodejs-docs-22.22.2-1.module+el8.10.0+90865+d647ef3a.noarch.rpm	d496ba0c0b84c2f0cba823fcd0c865e3bf8e65a52d13f22a875adbc6f51bc84a	-	ol8_x86_64_appstream
	nodejs-full-i18n-22.22.2-1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	49fbb66e0f151ec2c447421cccff1c1758967d4e1f1971d35a156f671232b6da	-	ol8_x86_64_appstream
	nodejs-libs-22.22.2-1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	03553ad96b2a07624ce64d87c5fd3a61f2e76a9d5a9d10cafc56c0facfa3aef5	-	ol8_x86_64_appstream
	nodejs-nodemon-3.0.1-1.module+el8.10.0+90865+d647ef3a.noarch.rpm	773dc76476bea80b36c38fc1fecd71a2bb0e7ea775d8d6f31934431ebd9cad1c	-	ol8_x86_64_appstream
	nodejs-packaging-2021.06-4.module+el8.10.0+90865+d647ef3a.noarch.rpm	fd725cdc1a33680c47b70cc0e3200f7ee8f8edf9dd429732a716739009130627	-	ol8_x86_64_appstream
	nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90865+d647ef3a.noarch.rpm	0d0e7d733fb3daacc042bd20887ad0713dcccbeeda9cc7848012b031938ebedc	-	ol8_x86_64_appstream
	npm-10.9.7-1.22.22.2.1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	868b118251b6a9f9f780eda760cea3e3067c3f67cfa3423db80d7bfc459211a3	-	ol8_x86_64_appstream
	v8-12.4-devel-12.4.254.21-1.22.22.2.1.module+el8.10.0+90865+d647ef3a.x86_64.rpm	bb36a5afd820151e4c9edb7eb8dd35b1a1285c3d6e2d8ae644abbe487eb7bb24	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691