Lucene search

K
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/6EC8FAA29341B4528CA0E835AAD021FE
HistoryMar 18, 2022 - 12:00 a.m.

Security fix for the ALT Linux 10 package node version 16.13.2-alt1

2022-03-1800:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
24
security fix
alt linux 10
node version 16.13.2
npm 8.3.1
libuv 1.43.0
cve-2021-44531
cve-2021-44532
cve-2021-44533
cve-2022-21824

EPSS

0.01

Percentile

83.6%

March 18, 2022 Vitaly Lipatov 16.13.2-alt1

- new version 16.13.2 (with rpmrb script)
- set npm >= 8.3.1
- set libuv >= 1.43.0
- CVE-2021-44531: Improper handling of URI Subject Alternative Names (Medium)
- CVE-2021-44532: Certificate Verification Bypass via String Injection (Medium)
- CVE-2021-44533: Incorrect handling of certificate subject and issuer fields (Medium)
- CVE-2022-21824: Prototype pollution via console.table properties (Low)